Mimecast snaps up US vendor to counter 'boring' cybersecurity training methods

Vendor slams current training programmes that feature 'PhDs rambling about security'

Mimecast has acquired US-based cybersecurity firm Ataata to address the "boring" training options currently on the market, according to the vendor's CEO.

Ataata provides a "cybersecurity awareness and training platform" which it claims can help organisations reduce the rate of security issues created by human error among their workforces.

Peter Bauer, Mimecast CEO, said: "Cybersecurity awareness training has traditionally been viewed as a check-the-box action for compliance purposes, boring videos with PhDs rambling about security or even less-than-effective gamification which just doesn't work.

"As cyberattacks continue to find new ways to bypass traditional threat detection methods, it's essential to educate your employees in a way that changes behaviour."

Mimecast cited Gartner data as one of the key rationales behind the acquisition, claiming that the security awareness computer-based training market will be worth over $1.1bn by the end of 2020.

Michael Madon, CEO of Ataata, added: "We're excited to join forces with Mimecast to help customers build a stronger cyber-resilience strategy that includes robust content, risk scoring and real-world attack simulation - going way beyond basic security awareness capabilities.

"Human error is involved in the majority of all security breaches, and these casual mistakes can cost organisations money, their reputation - and employees, potentially, their job.

"Cybersecurity training and awareness doesn't need to be difficult or boring. Training and awareness is needed to help mitigate these internal risks. Our customers rely on engaging content at the human level, which helps to change behaviour at the employee-level."