Four out of five companies do not employ IT professionals
Author
Mick ZanderThe Corona pandemic and the sharp increase in those working from home have put companies' IT infrastructure to the test. A new study by the Federal Statistical Office has concluded that only one in five companies (19%) employs its own IT specialists. In this article, we look at the results of the study and how important it is to raise the awareness of your employees to protect yourself more effectively against cyberattacks.
Every year, the Federal Statistical Office collects figures on the use of information and communication technologies. The figures from 2019 provide an interesting insight into the IT world of German companies and their strategies for dealing with cyberattacks. For example, one in five companies (20%) with at least ten employees insured themselves against a cyberattack.¹ Based on the results of the study, a slight trend towards more problem awareness within German companies can be derived. Preventive measures are no longer a rarity, even if the numbers are still far below the necessary level. Often enough, measures are only taken after a cyberattack has happened.
The changing nature of IT infrastructure
The IT infrastructure of companies is changing. More and more people are working on the move or from home. This trend will most likely continue to increase in 2020. This change poses new challenges for companies looking to protect sensitive data. Every second company (53%) provides its employees with a portable device with mobile internet access. One in four companies (25%) backs up data in a separate location or the cloud. Cybercriminals can take advantage of this because companies do not protect access sufficiently and continue to use unencrypted communication. One in three companies (35%) created a network connection via VPN.¹ A few weeks ago, we published a blog article on a huge data leak from known VPN providers.
Implementing protective measures
The human being still represents the most significant vulnerability within a company or organsiation. Raising employee awareness can reduce the risk of becoming a victim of a cyberattack. In half of all surveyed companies (49%) with at least ten employees, this was done through voluntary training or by providing internally accessible information. Mandatory information security training for employees was implemented in every sixth company (17 %).¹ Even though the numbers are fortunately increasing, they reveal a frightening plight in which the majority of German companies find themselves: there is insufficient information security. It is no longer a question of whether a cyberattack will take place, but when. Even small investments in information security can ward off the next cyberattack. With our diverse selection of awareness courses, you can significantly increase the level of protection within your company. You can get an overview on our coures page.
¹Correction: Every fifth company employs its own IT specialists in: Statistisches Bundesamt [online] https://www.destatis.de/DE/Presse/Pressemitteilungen /2020/09/PD20_N060_52911.html [28.09.2020].