According to new research, only a quarter (26 per cent) of Canadian employees at small and mid-sized businesses (SMBs) are very confident that their organization would be able to keep their business and its information safe from a cyberattack. This number is alarming, especially since it represents a seven-point drop year-over-year, indicating that there is a growing concern and need for cybersecurity awareness among Canadian businesses.

The research, commissioned by ESET Canada, also reveals that nearly half (46 per cent) of Canadian SMB employees believe their business is at risk of experiencing a cybersecurity attack. However, even with this level of concern, the overwhelming majority indicate that they spend enough time and money protecting their data. In fact, only 14 per cent of SMB employees recognize that they do not spend enough time and money on cybersecurity.

In addition, SMB employees also believe that cyberattacks on businesses have risen:
-Almost three quarters (73 per cent) believe attacks have increased within the last year alone
-Three in four (74 per cent) think they have increased in the past two years
-Sixty-nine per cent agree that attacks have increased in the past five years

“Canadian businesses believe that cyberattacks are on the rise, but they don’t spend enough time and money to mitigate against them,” said Iva Peric-Lightfoot, Country Manager, ESET Canada. “Safeguarding your business against cyberattacks is not only about the physical systems and software in place that protect your data, but also the policies and procedures that help eliminate human error.”

Knowledge and training are key concerns for businesses

When asked to identify factors that contribute to concerns about their organization’s level of cybersecurity, the research reveals that SMBs are not doing enough to arm their employees with cybersecurity education. Other factors contributing to concerns about an organization’s cybersecurity include:
-Lack of knowledge among staff about how their organization could be attacked (35 per cent)
-Lack of knowledge about how their organization is currently being protected (24 per cent)
-Lack of time spent on staying current with cybersecurity issues (23 per cent)
-Lack of investment in cybersecurity protection systems (19 per cent)

To help companies get started, ESET has a free training module for cybersecurity awareness, which is available for download and distribution by any organization to its employees, regardless of whether they use ESET’s software or not. The complimentary online course takes approximately 90 minutes to complete and participants are given a certificate upon completion.

“At ESET, we believe that knowledge is critical to protect one of your businesses’ most valuable assets,” said Peric-Lightfoot. “With cybersecurity awareness month in mind, we encourage Canadian businesses to look at their current cybersafety best practices and identify areas for improvement, including employee training and education.”