By: Brandon Polk, Director of Compliance Services
Contextual Security Solutions | October 3, 2018 @ 15:17
It’s officially October, “National Cyber Security Awareness Month”. We’re only 3 days in and I’ve already been overwhelmed with security awareness notifications ranging from individuals, small businesses, large corporations, you name it. Why is there so much focus on cyber security only during October? Does this imply that the ghouls and goblins only come out during October’s Haloween festivals? Data breach reports indicate much to the contrary.
Does your organization participate in this national agenda? Are you only promoting security awareness during the month of October? Why or why not? I’ve been blessed to observe hundreds of institutions’ security implementations, and even still, I haven’t seen it all. I experienced something new a few weeks ago. Sure, many organizations make you press Control+Alt+Delete and then there’s a notice, etc., etc. but what happens after you sign in?
For this particular organization, a part of their logon script includes a randomized, rotating security awareness dialog that promotes not only generic security awareness information but also included organization-specific information with references to internal policy numbers, etc. I was impressed… while the boring terminal screens map drives, etc. in the background, at the same time, each and every time you log in, you’re seeing a new dissemination of security awareness!
Don’t be an organization that falls into the mundane… be extraordinary and promote continuous cyber security… year round! As our world becomes more dependent on technologies, these things matter… not just today, but for the days of our children and future generations too! There is a common saying that “with great power comes great responsibility”… let’s not lose sight of the fact that the technologies that we possess and interact with on a daily basis are just that: “powerful”… and thus requires, “great responsibility”.
For more information on how we can help your organization assess and implement controls that strengthen your security posture, please contact us via firstname.lastname@example.org.