The DIY Handbook for Small Business Units for Cyber Security – 2
by Dhanya Menon | Nov 9, 2024 | Cyber Security | 0 comments
The Problem... Starts with the Users!
Enterprise users don’t like security.
Have little knowledge of security.
Value convenience over security.
Are often ignorant of regulatory security rules/policies.
Feel they have the right to employee privacy.
They Do — Unintelligent Things
Send emails with inappropriate and sensitive content.
Copy work-related information onto storage devices.
Bring their work devices (e.g., laptops) into unsafe environments.
Let outsiders (e.g., family members) use their work computers.
But Also... Are Generally Willing to Improve
Are receptive to incentives and enforcement.
Obey corporate rules when enforced.
Would like to be informed before making mistakes.
Are concerned about job safety.
...are your company’s main assets!
Types of Employees That Put Your Company at Risk
The Security Illiterate – Majority of employees with little or no knowledge of security, posing corporate risk through accidental breaches.
The Gadget Nerds – Introduce a variety of devices to their work PCs and download software without approval.
The Unlawful Residents – Use company IT resources in ways they shouldn’t, such as storing music, movies, or playing games.
The Malicious/Disgruntled Employees – A small minority who gain access to areas of the IT system they shouldn’t and send corporate data (e.g., customer lists, R&D) to third parties.
Submit a Comment
Your email address will not be published. Required fields are marked *
Save my name, email, and website in this browser for the next time I comment.