Start the year with a conversation on cyber security for employees. Train your employees on the technology tools you employ and be sure they understand how the tools will protect and notify them of threats. Educate your employees on the latest threats and teach them how to be vigilant in the fight against cyber criminals. It is also important to have a clear reporting procedure so if an employee sees something suspicious, they have a way to report it quickly.
Below is a list of items to start the conversation on cyber security for employees. You can use as an employee checklist to be sure they understand the types of cyber threats that are most common.
Cyber Security Awareness
◊ Look out for social engineering. Social engineering can begin with a phone call asking for information or telling you that your computer has been hacked. The hacker is looking to gain access to your computer or get company information. They may say they are from Microsoft or your IT department. They sound very concerned and want to help. Don’t give your password or any information and never give a credit card. If you think it is legitimate, tell them you will call them back. Any authentic service provider will understand your concern and encourage you to verify their identity.
◊ Ask someone. If you have any doubts, stop and ask someone.
◊ Make sure you are saving your critical data in the proper location and it is being backed up, so it can be restored if needed.
◊ If you think you have been hacked, tell someone immediately. Often a quick response can lessen the impact.
Staying Safe Online
◊ Have up-to-date security tools. Your operating system, browser, anti-virus, content-filtering and malware protection should always be current.
◊ Don’t navigate to a site if your security program notifies you that the site is unsafe or the security certificate has expired.
◊ Don’t click pop-ups that tell you to install software or scan for viruses as they are usually fraudulent.
◊ Never enter your personal information unless you are absolutely sure the site is real.
◊ Stay away from promiscuous or edgy sites like those that promote pornography, firearms, drugs and adult themes.
◊ Be careful of all sites with messages that are trying to raise your emotions. These can be religious or political sites that lure you with a controversial message.
Staying Safe When Using eMail
◊ Don’t click links. This is how most people get scammed. The link can look like it is from the IRS, UPS, Amazon, Target, your bank, your credit card company or so many others. Even if it looks real, don’t click. If you think it is a valid request, go outside of your email to a browser and navigate to the site.
◊ Never transfer or pay money based on an email. There is a current scam that looks like it comes from the company CEO or CFO asking you to wire transfer funds that has fooled many. Whenever you receive a financial instruction email, verify with the sending party preferably by speaking to them in person.
◊ Don’t fall for chain email scams that tell you to forward to everyone you know. These are made up of false claims designed to get your blood boiling so you will send to everyone in your address book. If you want to check a fact, go to a bona fide fact check site.
If you would like to more information for your employees subscribe to our Cyber Security for Employees Monthly Briefing or contact me at firstname.lastname@example.org.