Organizations often spend money on security technology or services and then find that these initiatives fail to achieve their objectives because front line employees or senior management do not support them. Don’t forget that all your security measures and expensive security hardware are not effective if you have an “uninformed” employee.
Security awareness is vital at all levels of an organization. Implementing appropriate measures to create that awareness among all employees will lead to the desired behavior in relevant-security situations. Educating employees about security threats and cyber-attacks should not be considered a waste of money, but rather an investment in mitigating threats. Also, it is prudent that employees know whom to contact and what procedures to take in case they suspect a hacking attempt or any other threat.