In an organization, every employee needs to comply with the business’ policies and thanks to GDPR we now need to take even more care with where we store information, whose information we store and how a business chooses to store it. As an employer it is your duty to educate and ensure all employees comply with rules and regulations which is why this blog is here to help with the Cyber Security element of it.
To help every employee understand the whole concept of cyber security in your business, having a handbook or document containing the policy so it’s physically there for someone to refer back to. Chances are it’ll go in one ear and out the other if it’s verbally spoken about so it’s always best to have it written down.
A good and sustainable policy will include:
- The emphasis and the importance of Cyber Security
- Explaining and providing tips on password management
- Highlighting how to detect phishing and other scams
- How to protective sensitive information
Whether you’re making a drink, attending a meeting or leaving for lunch you should always lock your PC. The reason being is that if you’re in a position where you are among a very few employees that holds sensitive and confidential data, anyone who walks past your PC will be able to see/obtain the data.
If this happens, that person may use the data how they wish once they get hold of it. As they have been employed by the company, some people can be a little untrustworthy little to everyone else’s knowledge so they could take the data and use it against you or the business.
Passwords that are easy to guess are typically those that are less than 8 characters, all upper or lower case and feature personal information about the PC holder. You should never give out your password to anyone, only you should know what it is as once another person knows it then they can tell others.
Here are some tips to creating a strong password:
- Use a combination of upper and lowercase letters
- Use special characters
- DO NOT use personal information such as your name, place of birth etc.
- Include numbers
Software and patch updates are to make sure that vulnerabilities that have been advanced to get past the anti-virus and anti-ransomware are secure. If you do not action the updates it can make your chances higher at becoming a risk of a cyber attack.
You can have the updates set to automatic so when there is an update to be done the PC will start it automatically.