Most large companies have cyber-security policies in place and focus on informing and training employees on security issues rather than enforcing policies.
Large companies grapple with employees‘ disdain for strict cyber-security policy enforcement and invest in communicating and training personnel rather than strictly enforcing their policies, according to a new survey, “ How Large Businesses Approach Cyber-Security in 2017,“ from market researcher Clutch. Of particular interest is a debate over the impact of phishing attacks, experienced by 57 percent of the respondents, compared to ransomware, reported by only 21 percent. „While large-scale ransomware attacks apparently affect few large U. S. businesses, these attacks motivate companies to strengthen their defense against cyber-threats, according to industry experts,“ the report said. Ransomware attacks are „eye-opening,“ for companies of all sizes, but particularly for larger ones, said CIO Tom DeSot of Digital Defense. But FRSecure CEO Evan Francen said that despite the publicity, disproportionate resources will not be devoted to ransomware instead of more common types of attacks. The report surveyed 304 IT decision-makers at companies with 500 or more employees.
