With security threats evolving at a rapid place, organisations must regularly communicate with their employees about potential risks, and educate them about cyber security best practices.

Whether they mean to or not, employees pose a huge threat to cyber security. According to research by IBM, an astounding 95% of cyber security incidents can be traced back to human error. An organisation’s best line of defence is to address this ‘human factor’, rather than to rely solely on technology to safeguard against hackers.

WIth that in mind here are five ways to keep the lines of communication open.

5 Ways to Communicate Cyber Security to Employees

1. Send regular cyber security updates (via email)

Ensure security is at the forefront of your employee’s minds by sending cyber security emails on a regular basis. Try to make these interesting and informative, with practical tips for staying secure. If possible, these emails should be informed by your IT department, but written by your marketing team (to ensure they are clear, concise and easy-to-read).

Another tip is to send these emails at the same time every week, month or quarter. This way, your employees will know when to expect them (and hopefully set some time aside in their schedule to bring themselves up to speed).

Have team leaders quiz staff about the contents of each email, to make sure everyone is reading them, not just moving them to the trash folder.

2. Create cyber security KPIs

Incorporate cyber security into employee performance reviews. Staff will likely be more motivated to abide by cyber security rules if they know it will have a direct impact on their performance.

This strategy is strongly supported by former CIA chief technology officer Bob Flores. Speaking at an IT event in Melbourne earlier this year, he said:

“Everyone in the company should have, as part of their performance evaluation, how they treat security. Employees have to be educated about security, and they have to be educated again and again and again. You can’t do it once as they come into the organisation, they have to learn about it until they retire.”
Bob Flores, former CIA CTO

Some examples of cyber security KPIs include the number of websites blocked, percentage of virus incidents, and the percentage of spam emails detected.

3. Hold regular training sessions

Run regular workshops about cyber security in the workplace. These could be facilitated by your IT department, or in smaller companies, by an external IT agency. Whether you have the budget for a 1-hour presentation or a 1-day interactive workshop, every effort counts.

The aim is to keep cyber security top-of-mind for all your employees and to foster a culture of being informed and well-educated. Investing in training sessions is a way to show your employees that cyber security is more than just ‘talk’; that it’s a top priority within your organisation.

4. Encourage questions and feedback

There is a lot of fear surrounding cyber security, but try your best not to let this permeate your organisation. While your employees should take cyber security seriously, if they are too scared to ask questions this could cause them to make more mistakes.

Cyber security is a challenging topic, and many people may find it tough to get their head around. Encourage people to ask questions and submit feedback. You could even create a system where people can submit anonymous enquiries. Try to develop a culture based on trust and communication as opposed to fear.

5. Make cyber security information impossible to ignore

When it comes to protecting your organisation from security threats, there’s no such thing as too much communication. Place visual reminders about important cyber security practices throughout the office. Add cyber security to meeting agendas on a monthly or quarterly basis. Randomly quiz employees about their knowledge to make sure the message is getting through.

Although this might sound tedious, it will help you create a culture that takes cyber security seriously; and the cost savings of this can be enormous.

Keen to understand more about Online Security Protection for New Zealand businesses? Download our latest eBook – it’s FREE!

Download the Online Security for New Zealand Businesses eBook

How to Keep Your Business Safe This Festive Season: Tips by Kendra Ross

If you like beer and cyber security then chances are you have met Kendra Ross or heard of her community networks 1stTuesday or Project Wednesday. Kendra, a dyslexic thinker, co-founded Duo, NZs largest Cyber Security

Why Business Intelligence Is Changing the Face of SME Businesses

As explained by TechTarget, business intelligence (BI) is a technology-driven process for analysing data and presenting actionable information to help corporate executives, business managers and other end users make more informed business decisions. From a range of

Microsoft Teams Integration with Other Apps

One of the best features of Microsoft Teams is the ability to collaborate with your colleagues right from the app itself. That’s right, there’s no need to send emails back-and-forth and run the risk of

5 Ways to Communicate Cyber Security with Staff

5 Ways to Communicate Cyber Security to Employees

1. Send regular cyber security updates (via email)

2. Create cyber security KPIs

3. Hold regular training sessions

4. Encourage questions and feedback

5. Make cyber security information impossible to ignore

How to Keep Your Business Safe This Festive Season: Tips by Kendra Ross

Why Business Intelligence Is Changing the Face of SME Businesses

Microsoft Teams Integration with Other Apps

CERT NZ’s Latest Cyber Security Insights Report – 2022 Q4

CERT NZ’s Latest Cyber Security Insights Report – 2022 Q3

What Is NCE? Microsoft’s New Commerce Experience Explained and How It Affects Your Business

A Guide to Obtaining Cyber Security Insurance for Your Small Business

CERT NZ’s Latest Cyber Security Insights Report – 2022 Q2

Leave a Comment Cancel reply