ITWeb, in partnership with KnowBe4, conducted a cybersecurity culture survey earlier this year.was to discover how South African organisations are prioritising human risk, how they currently manage and measure their security culture as well as challenges and opportunities in running security culture programmes and initiatives. The survey also aimed to identify trends or changes that have come about since the first survey on this topic ran in 2021.
The majority of the survey respondents said they assess or measure their cyber security culture. Of these, 37% have a mature method in place to measure security culture, while 45% have some measures in place, but these could be expanded on. Almost half of respondents have noticed an increase in social engineering over the past year. 15% of respondents experienced a decline in social engineering, while 18% of respondents either did not know or this was not measurable. The majority of respondents currently run a security awareness and culture programme.