Technology is only as effective as the people that operate it.
Cybersecurity awareness training is the most cost effective investment any organization can make in preventing data breaches, system compromise, reputational damage, and loss of intellectual property.
No one is born knowing how to use computers and networks securely. There are basic dos and don’ts and it is imperative for organizations to teach their employees how to do their jobs securely.
We advise our clients on dozens of specific policies and practices, but here are just a few to illustrate:
- Don’t use your personal password for work – make sure you use a strong password containing a mix of alphanumeric and special characters and not the local sports team – go Pats!
- Don’t share passwords
- Never click on a hyperlink embedded in an email message that comes from someone you don’t know and trust.
- Never enter sensitive information (either business or personal) on a web page that doesn’t show HTTPS at the top. The “S” at the end of HTTP means the message will be encrypted as it is sent across the Internet.
- Don’t open attachments from strangers or people you don’t trust. You can’t know what type of malware may be embedded in the attachment.
- Don’t go to sketchy sites from a work computer – ‘nuff said.
- Don’t ever download software – your computer has everything it needs – let the IT professionals take care of any updates.
Education, education, education. It pays off!
Jonathan is President & CEO of SystemExperts Corporation, a network security consulting firm specializing in IT security and compliance. Jonathan started the company in 1994. He plays an active, hands-on role advising clients in compliance, technology strategies, managing complex programs, and building effective security organizations. Jonathan brings a business focus to this multifaceted work balancing all technical initiatives with business requirements and impact.