If your employee opened an attachment that contains a virus, would he or she know to disconnect their device immediately and have an IT technician examine the issue as soon as possible?
Educating employees on cyber security can go a long way in protecting your data from a potential breach. All employees, not just IT personnel, should be taught how to avoid cyber attacks and what to do should their devices be compromised. Having a cyber security policy that clearly outlines security measures in place and how to respond to an attack can help improve overall security efforts.
Linda Musthaler, a principal analyst for Essential Solutions Corp., wrote an article recently for Network World that highlighted the importance of including employees in cybersecurity measures. Musthaler recommends making cybersecurity part of the corporate culture by offering regular meetings and training sessions about the issue. The National CyberSecurity Alliance also recommends teaching employees how to use the company's spam filters to avoid harmful emails.
A data breach is one of the most crippling events that can occur. The financial impact can be devastating. According to a 2014 study conducted by Ponemon Institute, the average cost of a data breach amounts to $5.9 million. That is why it is imperative for businesses to educate all employees in cybersecurity prevention.
Train, Test, and Repeat
If you want to ensure employes are retaining the training they receive, it is good practice to periodically them on their knowledge. In addition to written tests, role playing can help employees act out potential situations. For example, Musthaler suggests sending a pretend technician to the office to see whether or not an they are asked to verify their credentials. If someone fail to validate their credentials, it's probably time to retrain.
Openly discussing cybersecurity threats you hear about in the news with employees can also help educate them on how to handle potential threats. Allow employees to team up and brainstorm on how they would have handled the situation differently, then share their ideas with the group. Thinking of ways to prevent threats will help keep it top of mind when working.
It's important to pay attention to how compliant employees are to corporate cybersecurity measures. If they are too strict, it can be counter-productive. For instance, Musthaler said requiring staff members to change their passwords every month may cause them to write down their current password and place it in an easy to retrieve area.
"A sticky note with a password posted near the computer is an invitation to credential abuse," Musthaler explained. "Let your workers help you design policies and procedures that will be respected."
Although cyberattacks can't always be prevented, educating employees on security measures can help make them less likely to happen. For more information on protecting your important information, contact Pinnacle, an Advanced Imaging Solutions company today!