Tools & Practices

Workplace Safety: What Can Cybersecurity Learn From Reducing Physical Risk?

By Daniel Lopez

The U.S. Bureau of Labor Statistics (BLS) recently reported historically low levels of occupational injuries and illnesses, with 2.6 million incidents reported in the private sector in 2023, down 8.2% from 2022. This significant improvement underlines the impact of strong protocols, collaboration and prevention strategies in keeping employees safe. But while physical security in the workplace is improving, digital threats in the workplace continue to increase, creating new challenges for organizations.

Lowest Level of Workplace Injuries and Illnesses Reported Since 2003

The 2023 decrease in incidents reported is mainly a result of the 72.6% decrease in respiratory diseases to 100,200 cases in 2023. Workplace diseases decreased by 6.6% to 200,100 cases, the smallest figure since 2019.

The recent report reveals a decrease in total recordable cases from 2.7 in 2022 to 2.4 in 2023 for every 100 full-time employees. Nonfatal injuries at work that took days away from the job dropped by 20.1% year-over-year to 946,500 incidents. Healthcare and social support also showed a decrease in total reported injuries and illnesses from 4.5 cases for every 100 full-time employees in 2022 to 3.6 cases for every 100 full-time employees in 2023. 562,500 incidents were reported in 2023 as opposed to 665,300 cases in 2022.

Assistant Secretary for Occupational Safety and Health Douglas Parker said that these substantial developments in the number of injuries and illnesses in 2023 are encouraging. The BLS report and recent analysis showed fewer employee deaths in OSHA’s observation. The combination of strong implementation and cooperation between labor, the government, and the private industry with regard to workplace safety and wellness is making a difference in the everyday lives of America’s workforce. If deaths associated with COVID-19 were not included in the information, reported fatalities in the place of work were at the smallest number since 2017.

The parallels between physical and cyber security

Just as organizations strive to reduce workplace accidents, they need to take a proactive approach to cybersecurity. A cyber attack, like a workplace accident, can have serious consequences, ranging from data breaches to operational disruption and financial loss. Key lessons from workplace safety trends can be applied to strengthening cybersecurity defenses:

  • Incident reporting: OSHA’s focus on tracking and analyzing workplace incidents reflects the importance of recording and tracking cybersecurity events to identify vulnerabilities.
  • A prevention mindset: Just as security training helps prevent physical injury, cyber security awareness helps employees recognize phishing attempts, weak passwords and other threats.
  • Measurement-based improvement: Workplace security improvements are data-driven, a principle that can be applied to cybersecurity by using metrics such as incident response times, patching delays and system vulnerabilities to guide priorities.

Healthcare: a crucial issue for security and cybersecurity

The healthcare sector, a significant contributor to workplace accident data, has seen a decline in incidents, from 4.5 per 100 full-time employees in 2022 to 3.6 in 2023. While this is a positive trend, the industry remains one of the most targeted sectors for cyberattacks. Breaches not only compromise sensitive patient data, but can also disrupt the delivery of care. Ensuring physical and digital security in the healthcare sector is essential to protect both staff and patients.

Digital risks on the rise

Although workplace accidents are falling, organizations are facing a growing number of cyber incidents, with ransomware, phishing and data breaches becoming commonplace. The focus on security culture in physical workplaces must extend to digital environments. This includes creating robust incident response plans, investing in security tools and fostering collaboration between IT teams, management and external cybersecurity experts.

The significant reduction in workplace accidents and illnesses shows that sustained effort, clear policies and effective collaboration can lead to measurable progress. Cybersecurity professionals can draw inspiration from these safety programs to address the evolving risks of digital workplaces. By applying the same principles of prevention, training and incident response, organizations can better protect their digital infrastructures and ensure a safer, more resilient future.

Image credits: Supatman, AdobeStock

Twitter Facebook LinkedIn Reddit Link copied to clipboard

Posted by

Daniel Lopez

Daniel Lopez is the HIPAA trainer behind HIPAA Coach and the HIPAA subject matter expert for NetSec.news. Daniel has over 10 years experience as a HIPAA coach. Daniel provides his HIPAA expertise on several publications including Healthcare IT Journal and The HIPAA Guide. Daniel has studied Health Information Management before focusing his career on HIPAA compliance and protecting patient privacy. You can follow Daniel on Twitter / X https://twitter.com/DanielLHIPAA

Related News

68% Increase of Ransomware Attack Severity in H1 of 2024

BianLian Cybersecurity Latest Advisory on New Threat Actor Tactics