Want to know why security awareness training should be part of your IT security policy?
Any well-adjusted creative agency or practice nowadays knows all about cyber-crime. You know about the risks posed and how important it is to have a coherent IT security strategy in place. This is so that if or when something bad happens, they are ready and able to execute their business continuity plan.
If this is you, then it is a good start and more power to you. But complacency around security with any kind of “set-it-and-forget-it” arrangement in place, means that you are assuming everything is working… both at tech level and as importantly, at a human level.
Your team, who uses IT to do their jobs, are at the very front line of your IT security system. They are your human firewall. Every email that arrives, every website they browse requires a click, a word, or even a password. There is an adage in IT security that states: “you are only as secure as your weakest link”. Anyone of them could receive a phishing email. Anyone of them could click on a link when they were distracted that could give the bad actor their Office 365 or G suite password and thus a route to your company’s core data.
Ask yourself this security question…
On a scale of 1 to 10 (where 1 is not at all confident and 10 is super-confident), how do you rate your entire team’s IT-savvy-ness?
There are numerous reports out there which emphasise the importance of regular awareness training and the consequences of not doing it.
ITGUYS runs security awareness training sessions in your own business with hands-on workshops and simulated phishing attacks.