Cybersecurity in the Workplace: Insights from a Kaspersky Survey

Overview: Device Usage in the UAE Workplace

A recent survey by Kaspersky titled Cybersecurity in the Workplace: Employee Knowledge and Behavior revealed significant trends regarding how professionals in the UAE utilize technology for work-related tasks. The findings highlight that many employees are relying on multiple devices to fulfill their work demands. Specifically, the survey indicates that alongside computers, 58% of respondents also use mobile phones, and 40% utilize tablets to access work information.

Cybersecurity Awareness Among Employees

Despite the increasing reliance on different devices, the survey shows that 70% of participants have cybersecurity protection solutions in place across all their devices. However, a concerning 5% of those surveyed expressed uncertainty about the security status of their devices. This gap in awareness underscores the necessity for organizations to enhance their cybersecurity education and protocols.

Conducted by the Toluna research agency on behalf of Kaspersky in 2025, this thorough study included 2,800 online interviews with both employees and business owners across seven countries, including Türkiye, South Africa, Kenya, Pakistan, Egypt, Saudi Arabia, and the UAE.

The Importance of Device Protection

In today’s interconnected digital world, safeguarding all devices used for accessing business data is paramount. Unprotected devices can become gateways for cyber attackers, who might exploit them to gain unauthorized access, steal sensitive data, deploy ransomware, or disrupt operations.

The survey highlighted some alarming behaviors among UAE respondents over the past year. For instance, 41% admitted to utilizing their work devices for personal activities such as watching movies, playing games, shopping, or making holiday bookings. Furthermore, 40% connected these work devices to public Wi-Fi networks, 8% experienced lost devices, and 12% reported their devices being stolen.

Addressing Cyber Hygiene Challenges

These statistics emphasize the critical need for a proactive approach to cyber hygiene and robust security solutions for all endpoints. Using work devices for personal purposes, for example, can lead to the installation of unauthorized applications or exposure to harmful websites, thereby increasing the risk of malware infections or data breaches.

Connecting to unencrypted public Wi-Fi networks introduces additional vulnerabilities. Cybercriminals can easily intercept business data or introduce harmful software when security measures, such as Virtual Private Networks (VPNs), are not employed. Additionally, if a device is lost or stolen, the absence of strong security controls—like complex passwords, encryption, or remote wipe capabilities—can result in sensitive business information ending up in the wrong hands.

Building Comprehensive Security Measures

With businesses increasingly reliant on cloud services, remote work, and mobile access, implementing comprehensive security measures is no longer optional. Brandon Muller, Technical Expert for the MEA region at Kaspersky, emphasizes the importance of regular maintenance of good IT habits, adherence to security policies, and the utilization of robust security solutions to safeguard business systems.

Effective security measures should encompass endpoint protection for every device that accesses business information. Key recommendations include implementing multi-factor authentication and ensuring regular software updates and backups are part of standard operating procedures.

Recommendations for Strengthened Defenses

To bolster organizational defenses, Kaspersky suggests several actionable strategies:

1. Establish Clear Security Policies: Organizations should formulate comprehensive security policies that cover everything from password management to software installations, network segmentation, and data encryption.

2. Regular Employee Training: Conducting regular cybersecurity training sessions can help employees develop practical skills. Solutions like the Kaspersky Automated Security Awareness Platform can be useful in enhancing cybersecurity literacy.

3. Robust Endpoint Protection: Implementing reliable endpoint and network protection solutions, such as those from the Kaspersky Next product line, can cater to businesses of varying sizes and enhance overall security efficacy.

By fostering a culture of cybersecurity awareness and implementing necessary measures, organizations can better protect their critical data and strengthen their defenses against potential cyber threats.