It is hard to find a company these days that does not utilize computers and the internet. Even a business that has been in a family for generations will likely have a website, employ software for accounting and paying taxes as well as email for communicating with employees and customers. We have all become used to this type of digital experience, and many of us are savvy from spending hours each day on computers. Unfortunately, this level of comfort has led to complacency among many.
According to noted insurance provider Chubb’s Third Annual Cyber Report, 80% of employees at a business know about and worry about cybersecurity, yet only 31% regularly change their passwords and 41% use cybersecurity software. Business owners and managers should see this as a red flag and assume that employees are not as careful as they should be at work.
According to the study, businesses are not helping themselves either with 70% to 75% saying that they have good to excellent cybersecurity, yet only one-third are implementing such necessary measures as holding annual employee training involving cybersecurity and 40% utilize filters of online content. Many employees are getting their information regarding cybersecurity from the media, friends and family. Considering that the health and ongoing viability of a business are at stake, it is in the best interests of every business to reevaluate its security protocols.
Protecting a business is good business
There is a variety of strategies that can be used to improve or update current cybersecurity protocols:
- Revisit the topic of cybersecurity by updating protocols and do this annually.
- Talk to the IT person/department about specific areas of concern that are unique to the company.
- Implement basic rules like requiring employees to change passwords regularly, safely dispose of old equipment and implement regulations about the use of social media on work machines.
- Chubb also recommends a policy that protects businesses from cyberthreats.
One email can bring a company to a standstill
All it takes is one employee opening an email with malware in it. Suddenly, the hackers have unauthorized access to proprietary information, bank accounts, tax info, and other sensitive data involving the business and its employees. While bigger companies’ size makes them bigger targets, smaller companies face risk as well (perhaps from an ex-employee who accesses information remotely).
Employers can work with employment law attorneys to update their handbook and security protocols. Business attorneys can also help with a claim if there has been a data breach.