Cybercrime is a very real challenge all businesses face these days and with the threats becoming more complex there is even more reason to ensure your staff are aware and educated as to how to spot these dangers and what to do about them.
With all the headlines, recently about various cyber-attacks taking down companies of all sizes it is no wonder it is such a hot topic. The truth is the landscape is evolving and changing daily. Staying aware and knowing what to look for has never been as important especially with the new regulations such as GDPR coming into play May 2018.
Having your staff trained on this subject matter is no longer a nice to have but a requirement to protect your staff and business.
One breach could have serious consequences and therefore everything needs to be covered not just firewalls and antivirus but your staff and the most targeted staff.
We call this the 8th Layer the human layer. You can have all the right technology in the world in place and you should but one single click on the wrong email can still compromise your data, your client’s data and your company’s reputation.
The other 7 layers look like this:
- Information Security Policies
- Physical Security
- Secure Networks & Systems
- Vulnerability Programs
- Access Control Measures
- Protect & Backup your Data
- Monitor & Test your Systems
These 7 items are of just as important as that 8th layer and need to be in place, however for the purposes of this blog post we are going to focus on that 8th layer.
Most Target Staff
We mentioned the most targeted staff. These are the people in your company that have access to bank accounts and email accounts and are often the personal assistant to the directors. These are the most targeted people in your company as they are used to receiving a lot of emails from the directors or managers and are often granted access to more than most employees. They are also often time poor making them susceptible to oversights and more of a target for cybercriminals. This is not to say they are the only people that need to be cyber aware. In fact, all staff are at risk and in the case of CryptoLockers, they do not care who they compromise if they get a way in.
How you secure and manage your data is also going to be a requirement for all companies when the new General Data Protection Regulation (GDPR) comes into force in May 2018. And being able to demonstrate that you have taken all reasonable steps to secure your customer and 3rd party data is key to this process. This, of course, includes making your staff aware of the risks and what to do if a threat is presented.
Most of the high-profile breaches that have occurred over the last few months were very avoidable and in many cases, were due to lack of staff training as much as it was having the right technology in place.
So, what can you do about it?
If you are a BCS customer then you will have access to all the right technology and you will also have access to our online cybersecurity training. If you don’t simple email firstname.lastname@example.org and we will send you your code to access the training.
If you are not a BCS customer fear not. We hold monthly lunch and learn sessions on cybersecurity and for those that attend we will also provide you with a code that will enable you to train all your staff for free.
Why do we do this?
One of our core values at BCS is the education, in fact, our whole company is built around education. Our goal is to share as much knowledge content and expertise when it comes to technology. As a result, we have invested time and money producing a high-end course that we want to share with as many Kent businesses as we can. There are many seminars and courses available that other IT companies will charge money for. However, at BCS we simply as you attend one of our free lunch and learns for an hour on cybercrime and we show you how you can train your staff for free. Does that sound good? Book in today by visiting our Eventbrite page today by clicking here.