631-905-9617    Get SUPPORT

Suffolk Computer Consultants Blog

IT Security Starts and Ends With Your Staff

IT Security Starts and Ends With Your Staff

We wish IT security was as simple as setting up a good firewall and installing an antivirus. We talk a lot about security solutions that cover a lot of your bases, such as our Unified Threat Management (UTM) system. While these enterprise-level solutions are important, any investment in protecting your network can be upended by a single act of user error.

You see, the bad guys are clever, and they wouldn’t be building malware and stealing data if it wasn’t lucrative, and the successful hackers are very good at beating the system. A huge trend that has been growing for years involve hackers doing more than just infecting computers the old-fashioned way; today they are targeting people using tactics like social engineering and offline infiltration. They know that they can get access to your network by asking the right user the right questions over the phone or via email. They know how to get just enough information to sound somewhat legitimate, too.

Get Everyone on Board
It’s up to you to establish a IT security mindset with your employees. It starts with management and needs to trickle down across the entire organization. Getting other C-levels closely looped in, and then office managers and even HR is a good way to make sure everything is being taken seriously.

Show That Security Isn’t Meant to Be a Burden
If you fire off new processes like two-factor authentication or push policies to employees phones without rallying them first, you’ll likely get moans, groans, and pushback. It will feel like you are making their jobs harder, when in reality you are actually protecting them and the organization. Instead, it’s a good idea to teach your people WHY security matters to them. Good employees want what’s best for the company and will see value in protecting the company if they understand that these new security processes aren’t designed to be roadblocks.

Have Regular IT Security Check-Ins
Whether you put together a weekly email or hold a monthly meeting, stick to it. If you make security enough of a priority that you don’t postpone a piece of your plan, your staff will feel the importance of it. Plus, this allows you to take smaller steps that ensure good habits are being put in place.

Reinforce Diplomatically
Until IT security mindfulness is achieved, the responsibility is on you to make sure your staff understands the new processes and procedures. This may include thoroughly documenting your security best practices, including it in the employee handbook, creating training videos, and hanging posters. Plus, as security threats and compliances evolve over time, so won’t some of your processes. As things change, you’ll need to update your materials.

After most of your staff seems to “get it,” you can establish the repercussions for failing to comply with company rules. Remember that most practices can be easily remediated - depending on the severity of the issue, a first-time offender probably doesn’t need to lose their job. That said, treating repeat offenses and blatant disregard for IT security should be dealt with swiftly and corrected. One weak link can do harm to the entire chain.

Encourage Issue Reporting and Support Requests
One of the biggest tools you can equip your people with is the ability to put in support requests and report on anything suspicious. If they don’t feel comfortable and encouraged to put in support requests, they might not raise their hand when something really serious is happening. This can be caused from either not wanting to bother management with something that seems unimportant, or from having a fear that they will get in trouble for potentially causing an issue. It’s critical that you establish a clear value to reporting issues and mistakes that happen.

That’s where Suffolk Computer Consultants comes in. We can not only help you establish the infrastructure to protect your business, but we can help enforce, audit, and support your organization. We can act as your in-house IT department and field employee support questions. Let us help you protect your business from the ever-increasing number of online and offline threats. Give us a call at 631-905-9617 today and have a chat with one of our IT security experts.

Tip of the Week: Managing your Cloud Data
Antivirus Fights More than Just Viruses


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Thursday, January 24 2019
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Best Practices Business Computing Privacy Cloud Network Security Cybersecurity Productivity Malware User Tips Tech Term Managed IT Services Microsoft Communications Backup Smartphones Passwords Communication Hackers Efficiency Hardware Internet Email Small Business Software Business Management Browser Google Android Outsourced IT Hosted Solutions Business Ransomware Data Backup Data Recovery Mobile Device VoIP Wi-Fi Smartphone Data IT Support IT Services Alert Microsoft Office Holiday Innovation Windows 10 Cloud Computing Social Media Internet of Things Applications Save Money Network Collaboration Computer Bandwidth Apps Access Control Employer-Employee Relationship Managed IT Services Users Router Miscellaneous Saving Money Business Intelligence Password Wireless Twitter Mobile Devices BDR Automation Analytics Government VoIP Blockchain Data Management Workplace Tips Marketing Word Gadgets Phishing Business Continuity Data Breach Virtualization Networking Settings Excel Patch Management Vulnerability Office Information Hacking Company Culture Politics Paperless Office Tip of the week Remote Computing Virtual Assistant Mobility Chrome Cost Management IT Support Virus Managed Service Windows Productivity Remote Monitoring Law Enforcement Computers Compliance WiFi Cybercrime Website Office 365 How To Facebook Artificial Intelligence Scam Retail Wireless Charging Physical Security Managed IT Service Data Protection VPN Gmail Workers Battery Spam Mobile Device Management Remote Monitoring and Management Cortana BYOD Dark Web App Tech Terms Connectivity Medical IT Google Drive Comparison Bring Your Own Device Outlook WhatsApp Laptop Printing Analysis Data loss Unified Communications Authentication SaaS Voice over IP Spyware Amazon Data Security Hiring/Firing Remote Control User Security GDPR Operating System Tech Support Hosted Solution Network Attached Storage Streaming Media Work/Life Balance Safety Specifications Technology Tips Hybrid Cloud Profitability Staffing Paper Spam Blocking Business Technology Staff RAM Authorization eCommerce HP Database Managed IT Storage Information Technology Office Tips Automobile Telecommuting WannaCry Environment Training Gadget Botnet Copy Apple Server Management Downloads Multi-Factor Security Conferencing Backup and Disaster Recovery Eliminating Downtime News Ink Email Management Sales Websites Microsoft Teams Printer Server Big Data Licensing Online Shopping Document Management Tactics Plug-In Error Entertainment Biometrics Millennials HIPAA e-waste Cables Security Cameras Shortcut Hard Drives Paste iPhone Trends Disaster Recovery Content Filtering SSD Wireless Internet Recovery Telephone System IT budget PowerPoint Tablet Managing Stress Troubleshooting Cleaning Printers Upgrade Travel Digital Internet Explorer Proactive IT Maintenance Server Touchscreen Access Google Maps Hard Drive disposal Voice over Internet Protocol Wearables CrashOverride Machine Learning A.I. Inventory Help Desk IT Management Sports Reporting Knowledge Dongle G Suite Update Live Streaming Edge Threat Antivirus Movies Microsoft Office 365 Files Telephony Processors Value Healthcare Telephone Systems File Sharing Telecommute Education Smart Technology Spotify User Tip Lead Generation Mobile Security Certification Phone System Two-factor Authentication Remote Support Instagram Lithium-ion battery Gaming Console DDoS Augmented Reality Money Employer Employee Relationship Wireless Technology 5G Scalability Video Games Fun IBM Synergy IaaS Freedom of Information The Internet of Things Emergency Worker Hacker Television Credit Cards Budget Competition Customer Relationship Management Emoji Quick Tips HaaS Yahoo Printer Encryption IP Address Search Customer Service Regulation Unified Threat Management Mobile Office Vendor Management Leadership Domains Current Events Autocorrect Avoiding Downtime Computer Care Dark Data Windows 10 Scheduling Personal Information Samsung Public Speaking Net Neutrality Presentation Managed Service Provider

Newsletter Sign Up