Rand兰德：2025年放眼技术层面之外：纳入人为因素的网络风险评估报告（英文版）

The increasing reliance on technology and human interactions with cybersecurity systems is heightening the challenge for organizations to manage their cyber risks effectively. While many firms focus heavily on technical factors such as network configurations, software patching, and security controls, the growing body of evidence underscores the critical role of human factors in shaping cybersecurity outcomes. At the same time, the interconnected nature of modern workplaces and external threat