Stressful work environments don’t just erode morale; they can quietly undermine cybersecurity. When employees feel overworked, unsupported, or mistreated, their judgment and decision-making suffer. Rob Lee from SANS Institute highlighted how a toxic culture can lead to increased errors, missed threats, decreased productivity, and higher turnover rates.
According to CyberArk, a staggering 65% of office workers have admitted to bypassing cybersecurity policies to stay productive, showcasing how stress can lead to risky behaviours that endanger company systems.
The high price of stress
When speed is prioritised over protocol, employees may:
- Share passwords just to keep things moving.
- Ignore necessary updates, viewing them as a hassle.
- Fall for phishing attempts as stress makes them overlook red flags.
The high turnover rate in toxic workplaces also incurs recruitment and training costs, while leading to further security risks if offboarding isn’t handled properly.
How to approach this problem
Anonymous pulse surveys
HR can use short, anonymous surveys to check how comfortable employees feel about raising concerns related to security without fear of judgement.
Tracking stress signals and engagement
By monitoring metrics like engagement and absenteeism, HR can spot rising stress levels, potentially intervening before risky behaviours emerge.
Leadership’s role in cybersecurity
Leaders who manage stress effectively and support their teams cultivate a culture of security priority, even under pressure, reducing the risk of harmful shortcuts.
Training and awareness programs
- Phishing simulations: Use fake phishing emails to help employees recognise common scams.
- Case studies and role-playing: Staff can practice making security decisions under pressure, making them aware of the risks.
- Real-life incident reviews: Analyzing actual security breaches helps staff understand the consequences of mistakes.
Why should I read this?
This article sheds light on a crucial but often overlooked aspect of cybersecurity: the impact of workplace stress. It’s a must-read for anyone in leadership or IT roles who wish to foster a secure and productive environment. Understanding these dynamics can help organisations enhance their cybersecurity measures while maintaining employee morale. Don’t let stress undermine your security strategies!
