What can we teach employees about security?

Office security is one of the most essential parts of running a business. We not only manage and produce data relevant to clients, but must also protect it. Further, we are not just concerned about our own belongings or clients’, but our staff’s too.

Yet, as is widely known, those most liable for security breaches are staff themselves. Or, as IT Portal describes employees, “the weakest link in a company’s security chain.” The question is what can we do to ensure our business is secured. To answer that, we need to start focusing on what we can teach our staff about security and how to do better.

Main business security concerns

While many businesses do focus on using physical security – with guards, locks alarm systems and video wall controller – there are other, more modern concerns. In particular, cybersecurity is the biggest concern for most businesses. As the world has become more connected, with the spread of the internet, businesses themselves have changed.

But the same way we’re storing data, we’re also having to secure it. This is why cybersecurity has become essential to the workplace. As one study pointed out, too often cybersecurity is reactive as opposed to proactive. This fundamentally misunderstands how the world works and the nature of business today.

“This reactive approach is all too common, even though the question is not if a company will suffer an incident but when. In the annual PwC, CIO, and CSO survey of more than 9,600 global executives, 41 percent of US respondents had experienced one or more security incidents during the past year. And that number is rising.”

Teaching employees

Understanding the dangers of cybersecurity also means informing your staff. As we noted, staff are well aware that they’re the reason so many breaches take place.

First, we should ensure staff passwords are complex and change regularly. Implement protocols so passwords can’t be simple words or numbers, but a mixture. Ensure the staff realise why they should not share this password with others either. It’s not just about their data, but the business’.

It might also be wise to invest in VPN network service, rather than a public WiFi service. The latter is far easier to breach, while VPN ensures encryption. Similarly, employees using mobile devices should ascertain they’re secured: both digitally and on their person.

Security is not something that will simply happen, we need to be actively engaged with it. To that end, it’s essential for us to educate our staff.