Analysis & Opinions - Harvard Business Review

More Training Won't Reduce Your Cyber Risk

| Nov. 24, 2017


Except for senior managers, who all too often skip training or don’t take it seriously themselves, the way to reduce cyber risks is not more training; it is to not trust humans in the first place. There are simply too many chances for us to accidentally hurt ourselves or the networks on which we operate regardless of how much training we receive. What we need to do is to help users and customers keep themselves and their households and organizations out of trouble. This article discusses several measures that will make a company and its users more secure, regardless of whether or not they receive more training.

For more information on this publication: Belfer Communications Office
For Academic Citation: Sulmeyer, Michael and Mari Dugas.“More Training Won't Reduce Your Cyber Risk.” Harvard Business Review, November 24, 2017.

The Authors