Skip to main content

Save or Share this Report

For Security & Risk Professionals

S&R Pros Must Empower Employees To Prevent Phishing Attacks

Technology Alone Won't Stop Attacks; Security Awareness Is Critical

August 20, 2015


  • By Kelley Mak,
  • Rick Holland
  • with Stephanie Balaouras,
  • Martin Whitworth,
  • Josh Blackborow,
  • Peter Harrison

Why Read This Report

In a phishing attack, cybercriminals use email and/or social media to trick employees into revealing confidential information about themselves or their firms or clicking on malicious files or web links that infect their computers with malware. The attacker's phishing tackle box is loaded with specialized hooks to hack into an organization, and too many employees are taking the bait. When the countermeasures security teams employ fail to prevent these attacks, the next level of defense falls on the employee. Yet, current security awareness practices aren't providing the right kind of training to help employees identify and report phishing attacks. In this report, we look at where security awareness is going wrong and how security and risk (S&R) pros can revamp their security awareness programs to empower employees to protect themselves and their firms from phishing attacks.

Get Access

Already a Client?

Log in to read this document.

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($745 USD).


Table of Contents

  • Businesses Are Falling For Phishing Attacks: Hook, Line, And Sinker
  • Overhaul Security Awareness To Combat Phishing

  • Reduce The Occurrence And Impact Of Phishing
  • Supplemental Material
  • Related Research Documents