What Do I Tell My Employees About Internet Security?
If you're concerned about the security of your network, you've probably asked yourself this question many times. As your most important line of defense, employee computer use is often to blame for inviting ransomware into a computer, so end-user training is a must.
To save them from themselves while protecting company data, follow these end-user training best practices:
Use strong passwords, change them often and use a password manager
Don't use a computer to access sensitive company data unless you know it's secure
Don't leave sensitive information lying around
Careful what you click. Watch out for phishing scams aiming to take confidential information
Don't respond to requests for confidential company information
Lock computers and mobile phones when not in use
Don't plug in personal devices on the network without permission from IT
Take the OPENdns phishing quiz to see if you can spot phishing scams https://www.opendns.com/phishing-quiz/
If it's too late and someone has clicked on a malicious email link, tell them NOT to follow its instructions. Instead, they should unplug the computer from the network, turn off Wi Fi and immediately contact your IT department or ProActive Information Management to troubleshoot for them.
Organizations that train their employees and have guidelines in place to deal with cyber attacks actually do encounter less security attacks. Have a plan of attack to protect your network.