October is annually recognized as Cyber Security Awareness Month (NCSAM). We, at SAFETY4SEA have already published a series of articles focusing on cyber security with the aim to raise awareness on the issue. However, how do organizations usually spread awareness on cyber threats and promote cyber security among their personnel? Here is a quick guide to keep your employees informed, besides, they are your best defense against the cyber threat!
Being cyber aware maters: 3 Reasons Why
- Ransomware scam costs
A ransomware usually revolves around obtaining money to restore the locked down data of the victim. It is said that ransomware is being created, bought, and sold in underground economies. According to a security firm’s research, from 2016 to 2017, there has been a 2,502% increase in the sale of ransomware on the dark web while cybercriminal economy has hit global revenues of $1.5 trillion a year, the FBI has said.
- It can be contagious
Last year’s WannaCry and NotPetya attacks demonstrate the potential for malware that can replicate and spread through networks of communication. Contagious malware is a risk even in organizations with high security standards. While large data breaches are often limited to a single organization, contagious malware is easy to scale and can cause systemic loss to thousands of organizations.
- It can lead to great loss of data
Losing data means losing both time and money to restore or recover information that is essential to your organization. Viruses usually delete or cause corruption to files. Most of the data can be recoverable but there are cases in which the lost data cannot be recovered.
6 Steps for effective cyber security training
- Mix it up
Combining different training techniques is always a good option, especially in today’s multimedia world. Lectures can be broken up with video portions, PowerPoint presentations, storytelling, group discussions, Q&A sections, quizes, question cards and/or other debriefing techniques.
- Keep up the good job
Continuous training is the key phrase when seeking how to progress with respect to cyber security competence. One single seminar – mainly during October in the context of the special cyber awareness month – is not enough to spread awareness. Seminars should be conducted at least every month and the content and structure should be formed according to the latest updates regarding the issue.
- Make it sell
It is all about marketing; e-mail campaigns can have a great impact even when they are internal, within the organization’s employees. Potential subject of your cyber campaigns could be:
- Stay safer online!
- Don’t click on malicious links!
- Use only https sites for secure payments!
- Don’t ignore the signs!
- Good Leadership: Train the trainer
Success of training depends on how experienced trainers are. Of course, management coaching and leadership development is an investment of both time and money but when done full force. A large part of training is linked to providing effective feedback that is timely, specific, relevant as well as frequent and it is a fine line that organization leaders must learn how to walk.
- Spread it via social media
It is important to get all the employees engaged without exemptions. A good way to do so is by implementing new techniques on old skills. Spread the world by using social media. Create a group on Facebook, upload images & infographics using a specific hashtag. Invite your employees to join an event organized on cyber security.
Google’s message on homepage encourages you to perform a “quick Security Checkup“!
