Workers in Europe, Middle East and Africa (EMEA) have the worst cybersecurity discipline in the world and displaying signs of ‘security fatigue’, according to a study by Aruba, a Hewlett Packard Enterprise company.

Conducted to understand how the digital workplace is impacting businesses, the study of 2,650 employees across EMEA threw up some key security based trends:

•    Cybersecurity is an afterthought: Over half (55 per cent) of EMEA employees are not regularly thinking about cyber security, with nearly a fifth (17 per cent) not thinking about it at all. In contrast, global counterparts in Asia and the Americas think about cybersecurity on a far more regular basis (61 per cent and 51 per cent respectively think about it often or daily).

•    Legislation isn’t a deterrent: EMEA employees were more aware of the dangers of a security breach. When asked, 42 per cent understood that data loss brought legal ramifications, higher than both the Americas (36 per cent) and Asia (27 per cent). However, the study shows despite this, a quarter (26 per cent) still don’t believe cybersecurity is important to them. Combined with the fact that the use of security software is lower in EMEA (48 per cent) than other regions, there are clear signs that security warnings are not being acknowledged by the workforce.

•    Lack of responsibility: EMEA may simply be assuming less responsibility for IT security than those in other regions. Over a third (36 per cent) of employees in EMEA don’t believe cyber security is their problem, with many thinking it’s for the leadership team (10 per cent) or the IT team (26 per cent) to manage.

Morten Illum, VP EMEA at Aruba, said this attitude could be due to ‘security fatigue’ brought on by over-exposure to security rules with little technical assistance.

“Employees in EMEA have been inundated with security messaging through their organizations, as well as the media. Clearly giving further warnings and adding procedures isn’t having the desired effect. If employees understand the risks, but aren’t acting on it, the answer is not to provide yet more training, but to bring in enhanced technology that can provide the assistance and the protection workers need to do their jobs,” he added.

A CARTA approach to security

An autonomous approach to security is increasingly becoming more of an imperative as mobile and remote working is becoming the norm. In EMEA, the amount of employees working in remote or shared locations is now at 53 per cent, according to Aruba’s study.

This new paradigm creates the need for smart digital workplaces that deliver secure and reliable, optimised and personalised experiences that will foster employee creativity, collaboration, and speed, without clunky security systems causing barriers.

To succeed, Gartner has recommended a Continuous Adaptive Risk and Trust Assessment (CARTA) approach to security which leans heavily on AI, Analytics and Automation to embrace the opportunities and manage the risks of digital business. This leads to a more productive and more motivated employee, with a greater sense of job satisfaction. – TradeArabia News Service