Adopting a culture of online safety & cyber security in the workplace
The matter of online safety and cyber security has made its way up the ranks of ExCo agendas across the globe. Companies both big and small not only realise the importance of safeguarding personal and company data, but also their responsibility towards protecting the data of their customers. Obtaining and maintaining the best and most secure networks, hosting and operating systems needed to limit risk come at a cost. Sadly, unless your workforce is properly trained on online safety, your company cannot be fully protected.
The role of online security awareness and training in your business
A Kapersky Lab report identified that 46% of cyber incidents were related to human error. Every employee with access to the company's network opens your business up to cyber risk.
The success of your training and awareness plan depends solely on the material and the method of its delivery. Make sure your material is topical, practical and easily accessible via mobile devices for example.
Unfortunately, adopting an online safety office culture is not a once-off event. Just like you would regularly run updates on software and hardware systems to protect your business against new vulnerabilities, you should also aim to do the same when it comes to your employees' knowledge in this regard. Cyber security training and awareness should be an ongoing plan executed and managed weekly, monthly and quarterly.
Topics to cover in your cyber security training plan
Types of threats and cyber risk trends
Make sure your training covers relevant, practical examples of what the types of threats are; malware, phishing, ransomware, viruses, trojans etc., and how they are normally disguised.
General online safety
Basic online safety tips for accessing and browsing the internet, shopping online and downloading programs and apps are critical. Training must cover desktop and mobile devices and emphasis must be placed on how careless clicking could potentially lead to massive losses for the individual and or the company.
Social media safety
Cyber safety training at the office needs to include social media as well. Employees access social media platforms while at work or from company hardware and therefore it is important to address the risks.
Include the best practices when it comes to password creation and password storing.
Removable media protocols
The use of unauthorised removable media such as USBs and external hard drives should be strictly prohibited due to the risks involved. The reasons and risks of doing so should be explained and emphasised.
Acceptable and unacceptable use of company resources
Every company's policy regarding acceptable and unacceptable usage of desktops, networks and the internet could differ. Clearly define and share your policy with your employees; include disciplinary actions the company will take should transgressions take place.
Domains.co.za is a South African domains and hosting provider. In prioritising our customer’s security needs we have developed industry-leading hosting solutions and also offer our clients value-added security products such as Antivirus software and SSL certificates.
Cyber security starts at the foundation of your company’s network, its hosting, all the way through to every employee you hire. Talk to us about the hosting solutions we can offer your business. Click here.