Security Awareness – Once is Never Enough
Unless IT security is a core element of someone's job, it is not necessarily considered an ongoing development need. All too often employees get just an initial presentation from the IT department when they start and are expected to remember it, keep up to speed with changes and adhere to ever-changing IT security policies and procedures.
Without an ongoing systematic and proactive user awareness program, a strong security posture is in jeopardy. There is no cure for stupidity or genuine human error, but you can educate your workforce to help them make the right decisions and avoid unnecessary mistakes. What are you doing to make sure your workforce is security aware?