What's Happening?
With a 32% increase in identity-based cybersecurity attacks in the first half of 2025, HR leaders are becoming integral to workforce protection strategies. According to Microsoft data, these attacks predominantly target passwords, and cybercriminals are using
AI to enhance phishing and social engineering tactics. As a result, HR's role in organizational security is expanding, with a focus on workforce risk reduction. Forrester research predicts that by 2026, over 60% of security leaders will incorporate workforce risk reduction into their strategies. This shift highlights the need for HR to collaborate with IT and security teams to develop comprehensive training and policy communication strategies.
Why It's Important?
The increasing frequency of identity attacks underscores the need for organizations to prioritize cybersecurity as a strategic priority. HR's involvement in cybersecurity efforts is crucial, as employees are often the first line of defense against these threats. By integrating workforce risk reduction into security strategies, organizations can better protect their assets and data. This approach also presents new opportunities for HR professionals to demonstrate their strategic value and contribute to organizational resilience. As cybersecurity threats continue to evolve, HR's role in fostering a security-conscious culture will be essential for safeguarding both organizational and employee data.
