The short answer is yes.
Is it easy to get staff to actively participate? No.
Some employees will show eagerness to learn, while others would rather work on their daily tasks. That’s unfortunate because if your staff are fully engaged with your cybersecurity initiatives, you’d be running a much safer business that’s protected from both internal and external threats.