DUBLIN, 16 January 2025: IT.ie, a leading Irish IT managed services company, today announces the results of new research, conducted in partnership with SonicWall, which reveals feelings of blame among employees in Ireland when it comes to cybersecurity. The study found that nearly three-quarters (73%) of office workers believe their employer holds staff personally responsible – either through disciplinary action or unfavourable treatment – for cybersecurity incidents. In fact, some 29% of office workers report that at least one person in their company has been fired for accidentally causing a breach in the last 12 months.
The research of 1,000 office workers based in Ireland was carried out by Censuswide on behalf of IT.ie and SonicWall, a global leader in cybersecurity innovation. More than a third (38%) of respondents believe their company ‘always’ holds employees responsible for cybersecurity incidents, while 35% said they do so ‘sometimes’.
Given this stance, the survey explored the personal impact of cybersecurity threats and incidents on workers. It found that 50% of office workers feel stressed about cybersecurity in their job. This is despite the fact that the majority (60%) of respondents believe employees are not to blame for unintentional breaches and incidents.
The personal toll of causing a cybersecurity breach is so great that almost two-thirds (64%) of office workers said they would leave, or consider leaving, their job if they were to cause a breach. Meanwhile, 79% advocate for organisations providing mental health support to those who fall victim to cybersecurity attacks.
Despite the mounting pressure felt by employees to circumvent a growing volume of increasingly sophisticated threats, the research found that many do not feel comfortable reporting cybersecurity concerns to the relevant people. More than a third (36%) of those surveyed admitted that they have neglected to report a breach in the last 12 months, with the top reason for this cited as embarrassment, followed by fear of repercussions. Further highlighting a culture of silence, one-in-five said they would not be comfortable reporting a concern to upper management.
Eamon Gallagher, founder and managing director, IT.ie, said: “This research shows that businesses are, understandably, under enormous pressure due to the growing threat posed by cybercriminals. However, that pressure is wrongly being felt on a personal level by employees. While it is on all of us to be vigilant, the average office worker is not a cybersecurity expert; the onus is on business and IT leaders to ensure they have taken every step possible to safeguard their business and people.
“Stringent cybersecurity measures will become legally binding for EU organisations who fall under the NIS2 directive, which comes into effect for the first cohort of relevant businesses this month. It places the responsibility back on senior leaders to oversee training, security and business continuity measures that ensure that if, and when, a breach does happen, its impact is minimal. At IT.ie, we are helping businesses to prepare for NIS2, as well as the cybersecurity challenges that lie ahead. Finger-pointing won’t help anyone: holistic, proactive steps will.”
Stuart Taylor, Regional Director for Northern Europe, Sonicwall, said: “Our research underscores a critical issue in workplace cybersecurity culture. Blaming individuals for breaches not only fails to address the root causes of cyber incidents but also creates an environment of fear that can restrict transparency. It’s important for organisations to build a positive atmosphere where employees feel empowered to report concerns without the fear of repercussions. As cyber threats evolve, so must our approaches to security—prioritising collective responsibility and proactive measures over a culture of blame.
“By investing in security training, businesses can better equip their teams to navigate the complex cybersecurity landscape and protect themselves from the increasingly sophisticated tactics of cybercriminals. It’s equally important to stay ahead by implementing the latest cybersecurity defences, ensuring comprehensive protection against emerging threats.”
– Ends –
About the survey
The research was conducted by Censuswide, among a sample of 1,000 office workers in the Republic of Ireland (aged 18+). Censuswide abides by and employs members of the Market Research Society and follows the MRS code of conduct and ESOMAR principles. Censuswide is also a member of the British Polling Council.
About IT.ie
Established in 2004 by Eamon Gallagher, IT.ie’s mission has been to equip businesses with innovative IT solutions that not only meet but exceed their expectations. The company’s evolution from a break/fix IT service provider to a comprehensive source of Managed IT Services, Cloud Solutions, Cyber Security, and proactive IT support reflects its commitment to staying ahead in an ever-changing digital world.
About SonicWall
SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides seamless protection against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.
