Infosec, the cyber security education company, has released a new cyber security culture assessment tool. The Infosec IQ Cybersecurity Culture Survey introduces an actionable, scalable way to analyze and measure employee attitudes and perceptions towards security practices, policies, and training strategies across five cultural domains.
“Few metrics offer better insight into the effectiveness of your security awareness training program than your cyber security culture,” said Jack Koziol, Infosec CEO and founder. “However, it is also an extremely challenging metric to quantify and track over time. The new Infosec IQ Cybersecurity Culture Survey leverages the latest research into security culture assessment to help our clients show the impact of training beyond measurements like phishing click rates and training completion.”
The Infosec IQ Cybersecurity Culture Survey collects employee feedback and scores organizations across these five domains:
- Confidence: how employees classify their own ability to put their cybersecurity knowledge to practical use.
- Responsibility: how employees perceive their role in organizational security.
- Engagement: how willingly employees participate in an organization's security awareness and training program and apply available resources and support to improve security behaviors.
- Trust: how employees perceive the security posture and processes at their organization.
- Outcomes: how employees perceive the consequences of a security incident at their organization.
Infosec IQ program managers can administer the Cybersecurity Culture Survey as needed and use results to guide changes to cyber security policies, practices or training strategies. The tool generates scores across all five domains and provides recommendations for strengthening cyber security culture and improving scores in each domain.