Security
|

Linked: How to build a culture of cybersecurity

ByMike McBride Reading Time: 1 minute

This is the one thing I’ve discussed before regarding where we might fall short in our cybersecurity training. We don’t hold anyone accountable.

Make cybersecurity part of formal employee evaluation.

Give people a reason to care. Much like I talked a couple of weeks ago about creating a training culture, provides a way for people to learn more from others. Give them space and time to talk about security. Recommend they read some security blogs, meet to share stories about the latest phishing information, etc.

Let them do that, and don’t penalize them for spending part of their week getting educated instead of billing hours, making calls, closing tickets, or whatever other productivity measurements you are using. That’s how you create a culture, not by giving them a 30-minute training once a year.

Go read the whole thing and think about what we can be doing differently.

https://mitsloan.mit.edu/ideas-made-to-matter/how-to-build-a-culture-cybersecurity

Similar Posts

Shared Links (weekly) Feb. 27, 2022

Shared Links (weekly) Feb. 27, 2022

ByMike McBride Reading Time: 1 minute
ByMike McBride Reading Time: 2 minutes

An update on the security hole in Morpheus. The hole might just be the users..*L* I still don’t see why on earth, after being told over and over again to not open strange attachments in email, people would download and run any old file that some random stranger decided to share. Nevermind the copyright violations,…

Linked: Forget Flexibility. Your Employees Want Autonomy.
|

Linked: Forget Flexibility. Your Employees Want Autonomy.

ByMike McBride Reading Time: 2 minutes

Autonomy is understanding what needs to be done and having the freedom to decide the best way to get it all done. Managers can still contribute, they still set the priorities, they assist with roadblocks, and they are the ones who communicate what needs to be done, but when they start to go much further than that, employees feel that loss of autonomy, and they don’t like it.

Over the last couple of years, managers have been forced to sit back and let employees have autonomy. Much like my own experience, you can’t possibly expect employees who were successful and productive with that autonomy to just give it back for no reason.

What I’m Reading (weekly)

ByMike McBride Reading Time: 1 minute

The Burgeoning Business Cost of E-mail tags: MM LitSupport Schneier on Internet of Things Security: “It’s Going to Come Crashing Down” tags: MM Security Litigators Who Don’t Know Enough About E-Discovery Should Be Afraid, Very Afraid tags: MM LitSupport The 2015 Verizon Data Breach Investigations Report is Out! –“23% of recipients open phishing messages and…

|

The Innocent Victims of the Sony Hack

ByMike McBride Reading Time: 2 minutes

This is no joke. This is a risk all of us face, every single day, whether it’s with a work or a personal email account. We communicate electronically all the time. We share intimate details of our lives with the recipients of our messages assuming that it’ll never be public. It’s not social media after all. But if the network that stuff is sitting on gets hacked, it’s open season on whatever information you have there.

Learn to Code, Unless You’re in Prison
|

Learn to Code, Unless You’re in Prison

ByMike McBride Reading Time: 2 minutes

Apparently, while we are busy telling anyone and everyone who’s job is at risk due to technology to “learn to code”, if you’re in prison in certain states looking to make a better life for yourself after you get out, too bad: According to public records obtained by the Salem Reporter, the Oregon Department of Corrections has banned…

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.