Professional Documents
Culture Documents
Lesson1Lec_DataSecurityAwareness (1)
Lesson1Lec_DataSecurityAwareness (1)
LESSON 1: INTRODUCTION
TO SECURITY AWARENESS
Fortunately, there are processes an organization can initiate to help mitigate the effects
of cyber-crime, beginning with the essential first step of raising cyber security awareness.
Human beings are still the weakest link in any organization’s digital security system. People
make mistakes, forget things, or fall for fraudulent practices. That’s where cyber security
awareness comes in. This involves the process of educating employees on the different cyber
security risks and threats out there, as well as potential weak spots. Employees must learn the
best practices and procedures for keeping networks and data secure and the consequences of not
doing so. These consequences may include losing one’s job, criminal penalties, or even
irreparable harm to the company.
By making employees aware of the scope of the threats and what’s at stake if security
fails, cyber security specialists can shore up this potential vulnerability.
To create this enhanced level of security, people need to be informed of best practices.
Much of cyber security can be broken down into seven main topics:
• Data breaches
• Secure passwords
• Malware
• Privacy
• Safe computing
• Mobile protection
• Online scams
• Getting into compliance - Different cities, states, and nations have different rules and regulations to
follow. Everyone must become aware of these rules because ignorance of the law is not an adequate
defense.
• Including everyone, even managers - It’s all or nothing. Anyone not participating in the new security
measures constitutes a possible weak link. If everyone isn’t fully engaged, it’s all for nothing. This
particular practice also assumes that all departments (e.g., HR, Legal, Security) must buy-in and help
make it a reality.