Human Risk Management: CISOs' Solution To The Security Awareness Training Paradox
CSO Online, Friday, January 30th, 2026
Despite increasing investment, security awareness training continues to deliver marginal benefits. With a focus on actions over knowledge, AI-based HRM can personalize training to improve employee behavior - and ROI.
Cybersecurity guru Bruce Scheier is often quoted as saying, 'People are the weakest link in the security chain.' No more accurate words have ever been spoken about cybersecurity. You can spend millions of dollars on firewalls, endpoint security tools, access controls, and data encryption, but one employee can cause a catastrophic security breach, simply by downloading a malicious file or clicking on a rogue link.