New staff can mean more information security risks, warns expert
/EINPresswire.com/ If you have just hired new staff, or have a high staff turnover, you are probably exposed to an increased risk of security breach. Growing cyberattacks, including increased number of phishing and pharming scams, facilitated by use of social media, are only some of the challenges modern companies have to face when dealing with staff issues.
Alan Calder, CEO of IT Governance says, “Companies need to become more sophisticated in their methods to communicate security policies to staff and educate employees in key information security principles. Means such as emails or print material is not effective enough since it can be easily ignored and the level of staff understanding can’t be monitored.”
In a blog post, RSA cybercrime specialist Limor Kessem stated that the total number of phishing attacks launched in 2012 was 59% higher than the total calculated for 2011, up from 279,580 attacks to 445,004, costing the global economy over $1.5 billion dollars in fraud damages.
So do you know how much ill-informed employees cost your company? Do they know the do’s and don’ts of your corporate information security policy.
Calder says, “Some data breaches can be avoided if companies take care to convey key information security principles to staff and do it on a continuous basis. New, ill-informed employees are more likely to breach the company’s security policy, but existing staff must also be given a refresher on this and be made aware of scam threat.”
As Calder explains conventional staff awareness training may not be the most efficient way to familiarise staff with security policies. Classroom training on the other side can be too expensive and too time consuming for employers. Information Security Staff Awareness e-learning on the other side, offers a pragmatic approach to staff training whilst being cost-efficient and requiring minimal administration.
Information Security Staff Awareness e-learning also provides employers with tools to monitor staff progress and hard evidence that training has actually taken place.
Companies that are implementing an information security management system to comply with the ISO27001 standard will benefit considerably from deploying the Information Security & ISO27001 Staff Awareness e-learning course.
IT Governance offers a number of information security e-learning courses designed to meet compliance requirements. They can be viewed online at www.itgovernance.co.uk/itg-elearning.aspx.
- Ends -
FOR FURTHER INFORMATION
Desi Aleksandrova Marketing Executive
+44 (0) 845 070 1750
daleksandrova@itgovernance.co.uk
NOTES TO EDITORS
IT Governance Ltd is the single-source provider of books, tools, training and consultancy for IT governance, risk management and compliance. It is a leading authority on data security and IT governance for business and the public sector. IT Governance is ‘non-geek’, approaching IT issues from a non-technology background and talking to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at www.itgovernance.co.uk.
Alan Calder, CEO of IT Governance says, “Companies need to become more sophisticated in their methods to communicate security policies to staff and educate employees in key information security principles. Means such as emails or print material is not effective enough since it can be easily ignored and the level of staff understanding can’t be monitored.”
In a blog post, RSA cybercrime specialist Limor Kessem stated that the total number of phishing attacks launched in 2012 was 59% higher than the total calculated for 2011, up from 279,580 attacks to 445,004, costing the global economy over $1.5 billion dollars in fraud damages.
So do you know how much ill-informed employees cost your company? Do they know the do’s and don’ts of your corporate information security policy.
Calder says, “Some data breaches can be avoided if companies take care to convey key information security principles to staff and do it on a continuous basis. New, ill-informed employees are more likely to breach the company’s security policy, but existing staff must also be given a refresher on this and be made aware of scam threat.”
As Calder explains conventional staff awareness training may not be the most efficient way to familiarise staff with security policies. Classroom training on the other side can be too expensive and too time consuming for employers. Information Security Staff Awareness e-learning on the other side, offers a pragmatic approach to staff training whilst being cost-efficient and requiring minimal administration.
Information Security Staff Awareness e-learning also provides employers with tools to monitor staff progress and hard evidence that training has actually taken place.
Companies that are implementing an information security management system to comply with the ISO27001 standard will benefit considerably from deploying the Information Security & ISO27001 Staff Awareness e-learning course.
IT Governance offers a number of information security e-learning courses designed to meet compliance requirements. They can be viewed online at www.itgovernance.co.uk/itg-elearning.aspx.
- Ends -
FOR FURTHER INFORMATION
Desi Aleksandrova Marketing Executive
+44 (0) 845 070 1750
daleksandrova@itgovernance.co.uk
NOTES TO EDITORS
IT Governance Ltd is the single-source provider of books, tools, training and consultancy for IT governance, risk management and compliance. It is a leading authority on data security and IT governance for business and the public sector. IT Governance is ‘non-geek’, approaching IT issues from a non-technology background and talking to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at www.itgovernance.co.uk.
Legal Disclaimer:
EIN Presswire provides this news content "as is" without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.