Last month, we published several articles on cyber security awareness. The first discussed the importance of being cyber aware. The second then gave tips on how to encourage and embrace it within the workplace. Today we go a step further by looking at cyber security awareness training.
Now is the time to be cyber aware
Cyber-criminal activities are on the rise and have been for the past few years. According to some sources, attacks against businesses have more than doubled since 2016. The Covid-19 pandemic almost certainly contributed towards that, and as a result, cyber security training is now more popular than ever before.
More than 90% of all successful cyber-attacks revolve around information unknowingly provided by employees. Quite simply, employees represent the easiest way to gain access to networks and sensitive data. They must therefore be given help and advice on security protocols, processes and policies, as their support is critical
Top Tip: Study this e-learning package from the NCSC
‘Stay safe online: Top tips for staff’ can be added to your existing training programme. Alternatively, you can complete it online (this author managed it in around 20 minutes). Covering phishing, password management, securing devices and more, it is well worth a look. You can also read the CRIBB Cyber Security guide to phishing for more on that…
How best to train your staff on cyber awareness
- Fail to prepare, prepare to fail
- Invest in training
- Prioritise cyber awareness from the outset
- Focus on phishing, social engineering & passwords
You must prepare for the worst and assume that your organisation is a target. You must carry out cyber security awareness training regularly. It is important that you place great emphasis on this from day one, introducing it as key during the on-boarding process. Cyber awareness must be a real priority, with specific attention paid to areas that traditionally lead to data breaches.