Companies with employees that are well trained in IT security awareness can reduce their risks of a costly attack by as much as 70%.

October is Cybersecurity Awareness Month which is a great time to reemphasize the importance of good cyber hygiene and help build a culture of cyber safety, where following best practices is second nature.

Because IT security covers a wide range of different areas – password security, phishing awareness, data protection – it can be helpful to highlight various areas each week or month in different ways.

Some popular methods for keeping employees well trained on security awareness include:

  • Tips sheets
  • Posters
  • Workshops
  • Webinars
  • Video
  • Online phishing simulations

Thanks to CISA, the agency that heads up Cybersecurity Awareness Month, there are several free online resources that you can use to help build a stronger culture of security at your business.

These free resources include tip sheets, presentations for webinars, and more.

We’ll go over some of the highlights below that you can use to help structure your employee security awareness training.

How to Stay Cyber Secure at Work

Be Aware of Fraud on Social Media

Phishing doesn’t only come via email. Social media is fast becoming a minefield of phishing attacks that come via the shortened links common on social platforms, as well as friend requests from strangers.

Phishing scammers also scan social media looking for personal details they can use in phishing campaigns to make messages more believable.

Be careful about what you are sharing over social media, and don’t conduct any type of business via social media DMs. You should never share personally identifiable information (PII) on social platforms, and this includes sharing too much information about your company and its customers.

It Only Takes One Lapse for a Costly Breach

Cybersecurity awareness needs to be infused into the daily workflow because it only takes one accidental click on a phishing email to cause a costly ransomware infection to spread in minutes throughout the company network.

60% of small businesses that fall victim to a cyberattack end up going out of business within six months because they can’t recover from the costs.

Keep Devices Up to Date

Multiple updates are happening to our devices all the time these days, and it can be tempting to just put them off. But this can leave your device open to being manipulated by a hacker.

Software, firmware, and operating system updates often contain important security patches that address newly found vulnerabilities. So you should always apply updates in a timely manner. The easiest way to do this is through managed IT services. All updates and many other IT security best practices are handled for you so you can rest easy.

Tips for Password Security

Use a Long Passphrase Instead of a Shorter Password

A passphrase is several words, without spaces, put together to form your login password.  A passphrase is more secure because longer passwords are more difficult to hack.

Using a passphrase can help you avoid the problem of trying to remember passwords and making them too short and easy to hack. Think of a phrase that means something only to you, such as the title of the last book you read.

Keep Your Passwords Secure

Many employees share their work passwords with colleagues, but this can promote poor cyber hygiene. What if that colleague writes down your password on a sticky note on their desk for all to see?

You should also not store passwords in an unsecured document, email them without encryption, or write them down on a sticky note that is near your device.

Double Login Protection with MFA

Multi-factor authentication can block as many as 99.9% of fraudulent sign-in attempts. It keeps out hackers even if they have compromised your password.

To make MFA more convenient for employees, consider using a single sign-on application along with it to remove the number of logins users need to go through in a day.

At Home IT Security

Secure Your Wi-Fi

Many employees are working remotely these days and at home, IT security needs to be an emphasis of any company cybersecurity strategy. It’s important to secure home Wi-Fis by ensuring routers are protected with strong passwords and to update firmware regularly.

If possible, also add MFA to your router login.

Restrict File Sharing Preferences

File sharing on devices should be checked and restricted on any computers or mobile devices that handle business data. If you are sharing a folder on your PC, then anyone within connection distance of your home Wi-Fi (which can sometimes reach outside), may be able to infiltrate your PC and its data.

Use a Guest Network

A good best practice for home Wi-Fi networks is to create a guest network to separate your personal from work data traffic. Put only work devices on the guest network.

Get Help Automating Good Cybersecurity for Your Team

The more you can automate your IT security protections, the safer your business is from an attack. ECN IT Solutions can help your Tucson area company with smart and affordable IT security services.

We’re here and ready to talk cybersecurity with you! Reach out at 520-335-7553 or through our website.