Cybersecurity - Staff Guide to Staying Safe Online
They say that company culture comes from the top down. This is also true when it comes to cyber security attitudes amongst employees. It isn’t feasible for every organisation to employ a Chief Security Officer, but it’s important for at least one member of senior management to deliver clear communications and directions on the company’s cybersecurity policy. An organisation’s defences are only as strong as its weakest link, so buy-in is needed from all employees.
Recently a client of ours sent out this list below in an email to his staff. The bosses need to take the initiative and encourage and guide your team on minimising cyber risk and what to do if you experience suspicious activity. In his own words “The scammers only need to get it right once for the company to experience a real financial loss, we as a team need to get it right every time.”
- DO use hard-to-guess passwords or passphrases.
- DO keep your passwords or passphrases confidential. DON’T share them with others or write them down. You are responsible for all activities associated with your credentials.
- DO pay attention to phishing traps in email and watch for tell-tale signs of a scam. Watch the language used and be vigilant for unusual requests. If in any doubt just lift the phone.
- DON’T open mail or attachments from an untrusted source. If you receive a suspicious email report it to Novi immediately.
- DON’T click on links from an unknown or untrusted source. Cyber attackers often use them to trick you into visiting malicious sites and downloading malware that can be used to steal data and damage the network.
- DON’T be tricked into giving away confidential information. It’s easy for an unauthorised person to call and pretend to be a customer, supplier or agent. If in any doubt offer to call them back on the phone number we have on file for them.
- DON’T install unauthorised programs on your work PC. Malicious applications often pose as legitimate software.
- DON’T plug in any portable devices, flash drives or memory sticks as they could potentially damage the network.
- DO lock your PC when you leave your desk. This protects data from unauthorised access and use.
- DO report all suspicious activity and cyber incidents to Novi immediately.
- Do not feel embarrassed if a mistake is made, react immediately as timing is of the essence in protecting the network and limiting the potential of any scam.
- Do Change your password immediately if you believe a mistake has been made.
- Do switch off your PC before you leave the office each evening.
To help inform your staff and remind them to always be vigilant we have created a guide to staying safe online that can be printed off and pinned up on desks. Click here for the Stay Safe Online guide.
Please feel free to circulate Novi’s cybersecurity guide amongst your employees or teams. If you would like more advice on how to bolster your cyber defences, why not get in touch with a member of the Novi team today.