Having a technology only focus on IT security is like installing the most elaborate and sophisticated cameras and locks on your house, and then leaving the key to the front door under the geranium pot on the porch. A much more comprehensive approach is required to safeguard your company data.
The recent news of hacks on prominent websites and the resulting loss of privacy is sobering. The implications of these breaches can go well beyond the inconvenience of getting a credit card replaced. Not only is customer privacy & business reputation at risk in these situations, but a company needs to consider the implications to their business if a competitor accessed sensitive company data. The impacts could be far reaching and irrecoverable.
IT security is a multifaceted and complex initiative that requires constant vigilance on the part of every employee in the company. Something as careless (and common!) as writing down a password and taping it to a monitor, can render the most sophisticated security technology useless. Comprehensive training for employees about the importance of security and risk exposure, must be incorporated when organizations are looking at implementing security improvements. Changes should be made in phases and continually reviewed and benchmarked against ever evolving threats.
One of the simplest, least expensive and most effective ways to have an immediately positive impact on business security is an emphasis on password procedures. Everyone using technology, for personal or business use, should understand the importance of strong and secure passwords. A company can help overcome resistance from employees by providing tools like password vaults, so nobody is required to memorize multiple, unique and complex passwords.
Simply ensuring that your organization is using secure passwords is an effective way to raise security awareness in an organization that will provide immediate and low-cost reduction in risk. Don’t be the one to leave the key to your business under the geranium pot.
