Skip to main content


30 May 2018

Businesses hold the key to closing the cyber security perception gap

Businesses hold the key to closing the cyber security perception gap

Businesses hold the key to closing the cyber security perception gap

Miriam Wraight is the Head of the Home Office’s Research Information and Communications Unit, which delivers Cyber Aware, the Government’s flagship cyber security campaign. She has over 15 years strategic communications experience working in both the private and public sectors on a range of key societal issues including our national security, public health, getting into and staying in work, pensions, disability and local government.

The Internet has transformed the way we live our lives and run our businesses. But with it has come a new – and fast-growing – type of crime. Miriam Wraight looks at how industry and Government can work together to make the UK a more hostile environment for cyber criminals.

Make no mistake: cyber crime is here and it’s here to stay. According to the Crime Survey of England and Wales, the average person is 13 times more likely to fall victim to some form of computer misuse than a robbery [i].

And the main reason for this, according to the government’s Cyber Aware campaign latest research report, is a marked perceptions gap between how the public view cyber crime and the reality of the threat.

It appears that in spite of high profile hacking scandals affecting the likes of Mumsnet, Three and the NHS, a number of myths still persist in the minds of the public and business leaders.

The first is a misplaced belief that cyber crime isn’t ‘real crime’, born out by the facts that in the UK only 6.2% of computer misuse offences are reported to the police [ii] and more than half of business that have experienced a cyber breach failed to report it outside their organisation. [iii]

This is compounded by a perception that cyber crime isn’t something ordinary citizens or smaller businesses should be worried about. 

The final perception gap is perhaps the most concerning of all – a sense amongst the general population that there’s nothing more they can do to protect themselves from online crime, either in their personal or working lives.

This is far from the case. The reality is that a few simple steps can afford a real degree of protection against the majority of cyber threats – like using a strong, separate password for your email account and always installing the latest software and app updates.  

We’re calling on businesses to use their influence over both consumers and employees to bridge this gap and drive behavioural change. Not only as a means of reducing the reputational and financial risks of a cyber attack – but as an important customer engagement tool which will build trust. Our research shows there’s a genuine expectation from most consumers that businesses are looking out for their interests –72% of consumers, for example, believe it is the responsibility of companies to provide them with the tools they need to protect themselves. [iv]

Repeating the same message through trusted voices is key. Tactics like including cyber advice in customer and staff communications, integrating cyber security into training and creating light touch nudges at relevant touchpoints (such as account log ins) around the importance of things like passwords all add up to shape the way we go about protecting ourselves in the digital space.

With the prevalence of data breaches only likely to increase as we further digitise our lives and introduce new ways of working such as ‘bring your own’ device, it is crucial that businesses, government and individual members of the public work together to make the UK as cyber secure as it is cyber successful.


[i]Official for National Statistics, Crime Survey for England and Wales 2016
[ii] Official for National Statistics, Crime Survey for England and Wales 2016
[iii] Department for Culture, Media and Sport, Cyber Security Breaches Survey 2017
[iv] Deloitte, The Deloitte Consumer Review: Consumer data under attack: The growing threat of cyber crime, 2015