You’ve probably seen it in the past. Economy swings, business takes a hit. What’s one of the first things that gets chopped from the budget? Security Awareness Training.
Not so fast, you red-liner, you.
Security awareness training should be mandatory for every organization. Some regulations and standards require it. PCI for one.
Nothing can take down a company faster than an uninformed, information security lacking, naive employee. Hackers are waaay more sophisticated these days. To not provide security awareness training to your staff? Well, you might as well leave the front door to your offices and server room unlocked.
Training doesn’t have to be expensive or tedious. In fact, there’s a lot of good stuff available these days. HALOCK has developed our own security awaress training, and will be rolling out to interested clients in early 2012.
As a rule, all new employees should go through security awareness training upon hire, and all existing employees should be required to take training at least on an annual basis.
You can follow up the training with some Social Engineering testing to see if everyone learned what they should have. Make it fun! Award prizes!
Sr. Account Executive