Cyber security breaches are occurring more often, which can result in a loss of revenue, as customers consciously avoid dealing with companies that have been victims of hacking.
According to our recent research, the average total cost of a data breach is $3.79 million, and that number is only growing larger. Research shows that 52% of breaches are caused by human error, and not the technical issues one might expect. We have discovered that many companies act only after it's too late; they allow a breach to occur instead of proactively taking measures to improve their security.
Technologies such as cloud and mobility are changing corporate processes and workflows. Disruptive technologies like these should precipitate changes not only to your IT architecture but to your operations and policies.
Here are the Top Five reasons human error leads to security incidents:
- Increased use of social media by staff
- Failure of staff to understand new threats
- General negligence and carelessness towards security
- Lack of security expertise with websites and applications
- Failure of IT staff to follow security procedures and policies
If you want to improve your security, here are five fundamental suggestions you can easily implement in order to better protect you and your company.
- Be accountable
Knowing there’s a problem isn’t enough to construct a solution - you have to know every detail of a cyber threat to ensure it’s completely neutralized. Without accountability, that can’t happen. Owning up to mistakes can be tough, but it’s the best way to make sure you fully deal with security threats.
- Educate yourself
You’d think we’d be past the point where “password” and “123456” could top a year-end list of the most commonly used passwords, yet here we are. The fact is, it’s important to encourage absolutely every last person in your organization to develop basic security skills, including password protection and safe browsing habits.
- Heed policies and procedures
Company security policies and procedures exist to better protect an organization’s unique security vulnerabilities. Making sure everyone is up-to-date with all relevant info ensures they can be as effective as they were intended to be.
- Be a skeptic
Social engineering is another way nefarious types can break into networks, and being a skeptic is the best way to ensure you’re not susceptible. Do you click on links in emails from unknown senders? Are you reticent to provide personal details when signing up for something? Ask questions, and always be sure of what you’re signing up for.
- Send a clear message
If you’ve ever played the game telephone, you understand how quickly a message can be changed from its original meaning. The best way to ensure security policy procedures are effective and uniformly followed is to make sure they’re explicit and concise. If there’s even a hint of a gray area, do your best to spell out the obvious. And if you’ve got a question about a policy, don’t hesitate to ask.
As always, if you have questions or concerns about your organization’s cybersecurity policies or have fallen victim to cyberhackers, contact us today.