According to the recent IT Security Risks Survey conducted by Kaspersky Lab, 73% of companies have been affected by internal information security breaches, and the largest single cause of confidential data losses is employees at 42%. In fact, 19% of respondents said that at least one of their employees loses a mobile device containing corporate data at least once a year.
If you are not already aware, then you should be informed that your employees are most likely the biggest risk to your company's security networks. The best way to protect your company's data and confidential information from accidental exposure is to train your employees.
Employers should make it a priority to conduct routine training on the following three topics:
- Use of Strong Passwords: Developing stronger passwords is common advice, yet it is rarely followed. In 2016, Verizon released its Data Breach Investigations Report which revealed that a majority of data breaches are caused by human errors, such as weak passwords and unchanged default login credentials. Employers should take the time to educate employees on the importance of having a strong password and offer strategies on how to create one.
- Phishing Email Scams: Employers should train their employees on how to recognize an attempted phishing attack. Employees who are unaware of how to spot these emails may unknowingly release confidential personal and company information. Opening these emails may also risk placing malware on the company's system.
- Unsecured Wifi: Employers should educate their employees on the dangers of using unsecured wifi networks and to avoid connecting to it whenever possible. Using an unsecured wifi network, especially with a company-provided device, poses one of the biggest risks to exposure of company data. Employers should also train employees on ways to protect company data if an employee must use an unsecured wifi network.
If you have any questions about training your employees on issues related to cybersecurity, please do not hesitate to contact Kofi Semenya or any other member of the Coolidge Wall Labor and Employment Department.