631-905-9617    Get SUPPORT

Suffolk Computer Consultants Blog

IT Security Starts and Ends With Your Staff

IT Security Starts and Ends With Your Staff

We wish IT security was as simple as setting up a good firewall and installing an antivirus. We talk a lot about security solutions that cover a lot of your bases, such as our Unified Threat Management (UTM) system. While these enterprise-level solutions are important, any investment in protecting your network can be upended by a single act of user error.

You see, the bad guys are clever, and they wouldn’t be building malware and stealing data if it wasn’t lucrative, and the successful hackers are very good at beating the system. A huge trend that has been growing for years involve hackers doing more than just infecting computers the old-fashioned way; today they are targeting people using tactics like social engineering and offline infiltration. They know that they can get access to your network by asking the right user the right questions over the phone or via email. They know how to get just enough information to sound somewhat legitimate, too.

Get Everyone on Board
It’s up to you to establish a IT security mindset with your employees. It starts with management and needs to trickle down across the entire organization. Getting other C-levels closely looped in, and then office managers and even HR is a good way to make sure everything is being taken seriously.

Show That Security Isn’t Meant to Be a Burden
If you fire off new processes like two-factor authentication or push policies to employees phones without rallying them first, you’ll likely get moans, groans, and pushback. It will feel like you are making their jobs harder, when in reality you are actually protecting them and the organization. Instead, it’s a good idea to teach your people WHY security matters to them. Good employees want what’s best for the company and will see value in protecting the company if they understand that these new security processes aren’t designed to be roadblocks.

Have Regular IT Security Check-Ins
Whether you put together a weekly email or hold a monthly meeting, stick to it. If you make security enough of a priority that you don’t postpone a piece of your plan, your staff will feel the importance of it. Plus, this allows you to take smaller steps that ensure good habits are being put in place.

Reinforce Diplomatically
Until IT security mindfulness is achieved, the responsibility is on you to make sure your staff understands the new processes and procedures. This may include thoroughly documenting your security best practices, including it in the employee handbook, creating training videos, and hanging posters. Plus, as security threats and compliances evolve over time, so won’t some of your processes. As things change, you’ll need to update your materials.

After most of your staff seems to “get it,” you can establish the repercussions for failing to comply with company rules. Remember that most practices can be easily remediated - depending on the severity of the issue, a first-time offender probably doesn’t need to lose their job. That said, treating repeat offenses and blatant disregard for IT security should be dealt with swiftly and corrected. One weak link can do harm to the entire chain.

Encourage Issue Reporting and Support Requests
One of the biggest tools you can equip your people with is the ability to put in support requests and report on anything suspicious. If they don’t feel comfortable and encouraged to put in support requests, they might not raise their hand when something really serious is happening. This can be caused from either not wanting to bother management with something that seems unimportant, or from having a fear that they will get in trouble for potentially causing an issue. It’s critical that you establish a clear value to reporting issues and mistakes that happen.

That’s where Suffolk Computer Consultants comes in. We can not only help you establish the infrastructure to protect your business, but we can help enforce, audit, and support your organization. We can act as your in-house IT department and field employee support questions. Let us help you protect your business from the ever-increasing number of online and offline threats. Give us a call at 631-905-9617 today and have a chat with one of our IT security experts.

Tip of the Week: Managing your Cloud Data
Antivirus Fights More than Just Viruses
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, October 19 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Business Computing Best Practices Cloud Privacy Cybersecurity Network Security Managed IT Services Malware Tech Term Communications Backup Smartphones Productivity Microsoft Hosted Solutions Hardware Passwords Communication Hackers User Tips Android Efficiency Business Outsourced IT Internet VoIP Email Ransomware Small Business Software Browser Business Management Google Social Media Wi-Fi Save Money Alert Miscellaneous Router Saving Money Collaboration Twitter Computer Data Data Backup Smartphone Windows 10 Bandwidth Data Recovery Microsoft Office Employer-Employee Relationship Cloud Computing Business Intelligence Applications Innovation Data Breach Vulnerability Managed IT Services Mobile Device BDR IT Support Password Mobile Devices Blockchain Excel Internet of Things Access Control Office Network Workplace Tips Government Apps IT Services Automation Analytics VoIP Gadgets Data Management Phishing Virtualization Patch Management Users Settings WiFi Cybercrime Business Continuity Scam Tech Terms Dark Web Information Spam Wireless Retail Virtual Assistant Mobile Device Management Battery Cortana Chrome Tip of the week Remote Computing Virus VPN Workers App Hacking Computers Word Paperless Office Company Culture Artificial Intelligence Productivity Cost Management Politics Compliance Marketing IT Support How To Networking Wireless Charging Remote Monitoring Data Protection Law Enforcement Windows Physical Security Managed IT Service Holiday Gmail Website Office 365 Voice over Internet Protocol Live Streaming Processors Value Touchscreen Knowledge Telecommute Hard Drives Movies Telephony Lead Generation Mobile Security Reporting Telephone Systems File Sharing Connectivity Printer Server Files Server Bring Your Own Device Facebook Shortcut Remote Monitoring and Management Remote Support Laptop Printing Entertainment Biometrics Update User Tip WhatsApp Spyware Google Maps Disaster Recovery Microsoft Office 365 Google Drive Comparison Data loss Unified Communications Recovery Voice over IP Operating System Maintenance Medical IT Remote Control User Security Network Attached Storage Streaming Media Cleaning Printers Technology Tips Hybrid Cloud CrashOverride Analysis Hosted Solution Paper Access Outlook Amazon Two-factor Authentication HP Database Authentication Specifications Staff RAM eCommerce WannaCry Environment Spotify Antivirus GDPR Spam Blocking Business Technology Server Management Downloads Backup and Disaster Recovery Managed Service Copy Apple Ink BYOD Telecommuting Phone System News Tech Support Document Management Tactics Education Smart Technology Authorization Multi-Factor Security Conferencing Websites Hiring/Firing Microsoft Teams Licensing Online Shopping HIPAA e-waste Storage Email Management Sales Safety Trends SSD Work/Life Balance Paste iPhone IT budget PowerPoint SaaS Millennials Managing Stress Managed IT Plug-In Telephone System Digital Internet Explorer Content Filtering Cables Travel Hard Drive disposal Office Tips Automobile Error Tablet Machine Learning A.I. Botnet Staffing Big Data Inventory IT Management Sports Dongle G Suite Gadget Proactive IT Edge Threat Information Technology Troubleshooting Customer Service Emoji Upgrade Printer Mobile Office Search HaaS Vendor Management Domains Unified Threat Management Autocorrect Windows 10 Avoiding Downtime Public Speaking Scheduling Current Events Dark Data Leadership Samsung Presentation Emergency Lithium-ion battery Managed Service Provider Computer Care Augmented Reality Instagram Net Neutrality DDoS Personal Information Wireless Technology 5G Money IBM Employer Employee Relationship Gaming Console The Internet of Things Hacker Fun Scalability Budget Freedom of Information Quick Tips Customer Relationship Management Synergy Competition Video Games Worker Regulation IP Address IaaS Encryption Credit Cards Yahoo Television

Newsletter Sign Up