Monday, January 29, 2018

Changing your daily routines

Diabetes, despite being a silent disease, occurs very frequently among the general population. Once detected and diagnosed, the arduous task of changing and adapting daily routines begins to avoid the effects of this uncomfortable disease. From the diet, to the physical activity or the greater mental control are some of the recommendations that the experts recommend. Once these changes are incorporated, normal life is possible, even with diabetes.

As with this annoying disease, cybersecurity is a factor that must be taken into account in each of the daily routines of the company. Today, thanks to Dann Patterson of TechRepublic, we can know the opinion of Greg Michaelidis, collaborator and former cyber security advisor of Obama. Michaelidis believes that cybersecurity is a human problem and that companies have to communicate better about solutions to cybersecurity problems.

It´s true that despite the fact that cybersecurity is a very popular issue, many of the companies that take it into account in their policies think more about the reputational, or even commercial, aspect that this factor may have in companies that in its most basic character of security. In this topic Michaelidis proposes to see cybersecurity as one might get to see a public health issue: "By treating cybersecurity more like diabetes is actually the way we should approach this, where you have behaviors that you can train, do habitual and repeated by your doctor or your caregiver or your teachers, and do those parts of your life very regularly. Actually, it's a problem of behavior rather than a technological problem in many ways. "

When Michaelidis conversed with the CISOs and leading business leaders, they found many points in common among them about how to deal with the issue of cybersecurity in companies: "Once you have policies and procedures that the company wants its employees to follow, its internal communicators, its Human Resources staff and its personnel of incorporation have the obligation to help incorporate these real behaviors. These departments know what's in the employees' minds, they know how to work with them, answer their questions and help translate, so that's a key piece right there. "

When implementing new security routines in companies there is a moment that Greg Michaelidis considers key moment to assess the situation with employees: "What happens when your IT department trains staff? How do the employees of the company respond? If you see that they roll their eyes because they have to go through another online training, it´s a good indication that they are not necessarily realizing what you are trying to implement in terms of security policies. Take it to the letter and think of ways to make it more meaningful to them, and even include them in the idea that they are helping to increase security throughout the organization, and that they are not just being punished with another training they have to take. "

This humanization of cybersecurity is slow and can be incorporated into the daily routines of employees from the first contact with the company and their job: "All those who once joined a large organization that started a new job at the basic, middle or higher level they have gone through a process of incorporation. They complete forms and learn where the kitchen is and how to get office supplies. It is a good time to convey to people what culture is, what the company, organization or nonprofit considers important, and why they treat information security as important as they should, and that employees should be part of it."

Although from the point of view of Michaelidis it´s important to promote the most humane aspect of security, we must also emphasize that not everyone is worth transmitting the security routines to follow within a company: "When you start talking with older people in technology they assume, perhaps often incorrectly, that they are better communicators than they really are, that their information and advice will be taken and understood. After having worked as a communicator for some years, I realize that there is often a great chasm between people working in a communication capacity and employees, and then their technology people. "

Once these routines are incorporated into your daily professional life the level of security of the company will increase, thus avoiding undesirable cyberattacks that once received are very complicated to solve. Good safety hygiene by employees is the best protection.


Post a Comment