Linked: How to build a culture of cybersecurity
|

Linked: How to build a culture of cybersecurity

This is the one thing I’ve talked about before when it comes to where we might fall short on our cybersecurity training, we don’t really hold anyone accountable.

Make cybersecurity part of formal employee evaluation. Give people a reason to care. Much like I talked a couple of weeks ago about creating a training culture, provide a way for people to learn more and to learn from others. Give them space and time to talk about security. Recommend they read some security blogs, meet to share stories about the latest phishing information out there, etc.

Linked: The remote work revolution hasn’t happened yet
|

Linked: The remote work revolution hasn’t happened yet

What they argue for instead is a decentralization of our work. That rather than being the center of our lives and our time, work is simply a transaction. We give you output, you pay us. That’s it. It’s all there is.

That’s the revolution they are looking for. It might seem like a simple change, but it’s actually quite a different way to look at the world of work. Go read more and listen to the episode. It’s interesting to consider.

Shared Links (weekly) March 27, 2022

Shared Links (weekly) March 27, 2022

Linked: Nearly half of employees received no wellbeing check-in last year, research reveals
|

Linked: Nearly half of employees received no wellbeing check-in last year, research reveals

You cannot claim to care about the people who work for you, and not even check in on their well-being. Those two things do not go together at all. We have to get to that very minimum level before we can do more, and if we can’t even be bothered to get there, I see no reason why anyone with a choice would want to continue working for you.

Linked: Google routinely hides emails from litigation by CCing attorneys, DOJ alleges
|

Linked: Google routinely hides emails from litigation by CCing attorneys, DOJ alleges

I mean, it seems so simple, and yet so genius. But also so very unethical:

“In a program called ‘Communicate with Care,’ Google trains and directs employees to add an attorney, a privileged label, and a generic ‘request’ for counsel’s advice to shield sensitive business communications, regardless of whether any legal advice is actually needed or sought. Often, knowing the game, the in-house counsel included in these Communicate-with-Care emails does not respond at all,” the DOJ told the court. The fact that attorneys often don’t reply to the emails “underscor[es] that these communications are not genuine requests for legal advice but rather an effort to hide potential evidence,” the DOJ said.”

Linked: Skills Gap Is Top-of-Mind for Employers
|

Linked: Skills Gap Is Top-of-Mind for Employers

Training to meet the skills gap in your workforce is a never-ending challenge. This is not a one-time set it and forget it type of task. It is an ongoing task that will always need updating and tweaking. Have you planned for keeping everyone on your team up to date and continuing to develop the new skills you’ll need year after year?

A gap doesn’t get created overnight, and it won’t get fixed overnight. Even if it did, a few days later you’ll have another gap. The world changes every day. Don’t assume your people can change with it without any assistance from you.