Security Awareness Training is more critical now that organisations have sent most of their employees to work from their homes. There has never been a critical time in the history of IT and cyberthreats for organisations to consider security awareness sessions than now. It is been noted that the opportunity for cybercriminals to succeeding in compromising machines of employees working from home has greatly increased.
Organisations have solid security infrastructure and monitoring measures in place to protect employee devices but, once employees leave this environment the controls in their homes are a bit more relaxed making them an attractive target for cyber criminals.
So why should organisations conduct security awareness programs:
During this period, it is been noted that individuals are spending more time on their mobile devices than before. Cybercriminals are talking advantage of this uptake which has an shown increased of attacks in:
You may note that there has been an increase in online banking, shopping and doing business and this is all favoring the bad guys.
Some basic tips to avoid the above attacks would include:
Remember at some point the remote user will come to the office and if their machine is infected with a malicious software, once they connect to the corporate network, the malware may propagate on the network and infect other machines which could be missing updates and anti-virus.
Now more than ever, organisation need to embrace that they need to not just work differently during this Covid-19 pandemic which have lead to have remote employees, but also need to secure differently by putting some of the responsibility onto the user and use them as there last line of defense of the organization’s defensive strategy against cybercriminals.
Security awareness programs are good at educating the users on the importance of having them participate in the organisation’s security.
Security in an organisation and its cyber defense is majorly dependent on the weakest link and in the People-Process-Technology triad, the weakest link is the People of an organization. 85% of security reports indicate that the biggest threat to endpoint security is the negligence among employees to adhere to defined security practices.
“Be safe, Stay home if you can, and as an organisation send as many security tips as possible to your employees to keep them cyber-security aware and be cyber security alert as an individual.”