Security Awareness Training
There are only two types of employees when it comes to IT security: major risk employees and minimal risk employees. The only difference is that the minimal risk employees have been trained, have a sense for what is unsafe behavior and take action to protect themselves and the organization.
It might not sound like anything to be proud of, but the minimal risk employee is the ideal end goal: not only do these employees understand, for example, what a phishing attempt is, they report it and communicate back, effectively become security advocates for the entire organization.
So how do we get to a minimal risk IT employee? That’s where end-user security training comes in. This is the first in a series of articles that will help you train your employees on IT security.
Before we move forward I want to set the expectation that the only way to completely secure a network is to close it off. And that just won’t work for anyone trying to communicate outside of the local area network (LAN).
The whole point of the internet is to be an open network, so we must accept that vigilance is, in fact, excellence. Your network will never be bulletproof, but the more advocates you create internally for IT security, the more your risk factor goes down.
Application isolation is a new trend in cybersecurity that grows each day, and the simple idea is that you are segmenting your apps away from one another. This is counterintuitive to the API marketplace phenomenon happening concurrently, which is driving a lot of software as a service (SaaS) purchasing. Most organizations are not forward thinking or strict enough to practice application isolation or closed networks, so there has to be a compromise.
More Info: comptia a + jobs
It might not sound like anything to be proud of, but the minimal risk employee is the ideal end goal: not only do these employees understand, for example, what a phishing attempt is, they report it and communicate back, effectively become security advocates for the entire organization.
So how do we get to a minimal risk IT employee? That’s where end-user security training comes in. This is the first in a series of articles that will help you train your employees on IT security.
Before we move forward I want to set the expectation that the only way to completely secure a network is to close it off. And that just won’t work for anyone trying to communicate outside of the local area network (LAN).
The whole point of the internet is to be an open network, so we must accept that vigilance is, in fact, excellence. Your network will never be bulletproof, but the more advocates you create internally for IT security, the more your risk factor goes down.
Application isolation is a new trend in cybersecurity that grows each day, and the simple idea is that you are segmenting your apps away from one another. This is counterintuitive to the API marketplace phenomenon happening concurrently, which is driving a lot of software as a service (SaaS) purchasing. Most organizations are not forward thinking or strict enough to practice application isolation or closed networks, so there has to be a compromise.
More Info: comptia a + jobs
Comments
Post a Comment