How To Create A Sustainable Cybersecurity Culture

September 13, 20194:35 pm
Generic placeholder image

Long ago, an FBI director, Robert Mueller said, “there are only two types of companies: those that have been hacked, and those that will be” – implying that companies could not run from the reality of cybercrime.

Unfortunately, the statement remains to be accurate until today. A press release reported that cybercriminal activity remains one of the biggest challenges for company and mankind for the next two decades. Cybersecurity Venture in the press release predicted that cybercrime will cost the world $6 trillion annually by 2021, up from $3 trillion in 2015. The cost of the crime includes damage and destruction of data, stolen money, lost productivity, theft of intellectual property, theft of personal and financial data, fraud, and much more.

See also: Digital Transformation Waits: Keys to Bridging the Cyber Security Gaps and Bolstering the Existing System

This dramatic rise in damage cost, however, only reinforces the sharp increase in the number of organisations that are unprepared for a cyber-attack, said Robert Herjavec to Cybersecurity Venture. In addition, hackers not only attack computers directly but also through human error – actions that often accidentally or with malicious intent of employees that let hackers in.

For example, BBC reported that back in 2014, Morrison corporate was hit by theft of payroll information which turned out to be the work of a disgruntled employee. This issues raised attention and was caused by organisations that often give users (employees) more robust access to privilege and confidential information than needed.   

With all reported facts, how can a security manager help against or at least minimise the challenges? The answer is by developing an effective cybersecurity culture in workplaces – practices that integrate seamlessly with people’s work. So, without further ado, here is the guide to improve your cybersecurity culture.

1. An up-to-date security technology

Technology is disruptive, allowing us to change, adapt, and adopt to application and automation that best suit our needs. An organisation should take advantage by bringing in the best and most recent security technology. The technology, moreover, should include criteria such as customer experience and employee experience.

2. Protecting whistle-blowers

Updated information can come from every corner of the office and whistle-blowers are a vital safety in corporate culture. They give a mechanism for healthy corporate governance by exposing fraud, corruption, and more inadequate practical in the workplace. But due to the heavy job of reporting malicious acts, they are prone to threat. Thus, it is important for a business to protect the whistle-blowers.

3. Investing in training

Clear communication among team should routinely be conducted to ensure a consistent culture in the workplace. Additionally, there should be training that focuses on certain agenda such as password management, encryption and digital signing, phishing attacks, backing up work, account access, authentication, policies, sharing and sending sensitive information. 

Read also: The Importance of Cyber-Security in Cyber-Workplace: Conversation with Parvinder Walia