Best Cyber Security Awareness practice
Organisations also need to arm upon their best practice to ensure their remote workforce is helping to protect their business, data and reputation. Here are some key pointers:
● Be extra vigilant to COVID-19 phishing scams – run the free phishing campaign to assess risks, deliver awareness and train your staff.
● Use secure company provided systems – ensure cloud-based systems are patched and don’t use personal accounts.
● Be prepared and equip your staff. Provide encrypted up-to-date devices with patched applications, and VPN’s to access your company’s internal systems.
● Put protocols and processes in place should a cyberattack take place, to minimise the impact. Cyber Risk Aware offers PhishHuk, a free outlook plugin, which staff can use in their email ribbon to report phishing emails to IT Security.
● Have clear lines of communication. Avoid Social Media and Whatsapp when revealing sensitive data. Ensure your company is set up with secure best practice communication channels.
● Don’t take the easy route. Shadow IT – a term used for downloading unapproved software, is an increasing threat to cybersecurity. This can include Macro for excel or software to grab screenshots for example.
● Don’t connect to public WIFI. Instead, use a company-provided VPN or mobile data if accessing sensitive data.
● Don’t allow the use of personal devices as they are often insecure and vulnerable to cyber-attacks.
● Password protection and encryptions are key. On devices, files and data.
● Don’t forget to backup data centrally. Be it the concern of a system crash or the risk
posed by a ransomware attack, ensure all backups are made daily, to a central location and that restores are tested regularly by IT staff.
Stick to the rule of ABC
Always be coaching: At a time when businesses and individuals are more vulnerable, to mitigate the spread of this pandemic, organisations need to pull together for the greater good. Keeping businesses operational and protecting workforces from escalating threats, should be a global consideration and a united collaboration.
This time of uncertainty has led to a path to unprecedented behaviours. With the majority of the workforce now encouraged to work from home, the risk of businesses experiencing a cyber incident is significantly increased. Therefore it is imperative staff and businesses are prepared and protected from these very present cyber threats as best as possible. The best way of arming your people with knowledge of the cyber threats that are out there, and protecting your business in these uncertain times, is through cybersecurity awareness training with real-time cyber-attack simulations. And with free phishing simulations at your disposal, there can be no excuse for not doing your own cybersecurity health check.
Click here to go to the original author and source to this story.
Get your CompTIA A+, Network+ White Hat-Hacker, Certified Web Intelligence Analyst and more starting at $35 a month. Click here for more details.
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .