The “Yes” Model: Five Tips for Keeping your Business Safe

Data security is a hot topic these days and is being discussed everywhere from the boardroom to the server room.

We’ve recently covered the fundamentals of data security as well as commonly overlooked risks here on ThinkGig. Today we want to take a look at business strategies for establishing a culture that protects data and minimizes vulnerabilities. It’s what we like to call the “yes” model.

For professionals responsible for the security of the business, it can feel like you are always saying no – whether it be in response to a new device that presents security threats or an open source application.  The essence of the “yes” model is to embrace the opportunities presented by technology. Laura Koetzle of Forrester recently discussed this approach in her recent blog post, Protecting the Extended Enterprise.

Easier said than done, right? We know. But a key piece to making this work is to ingrain the mindset of data security within your employees. Here are five ways you can get closer to “yes:”

  1. Most industries today are subject to regulatory compliance. Make sure all employees completely understand their roles and responsibilities for conduct concerning your company’s security policy and any specific laws related to the privacy of customer records.
  2. In the event of a security breach, ensure that employees are trained to report and handle the situation appropriately. For instance, are there instances where law enforcement officials will need to be notified?
  3. Remind employees on the basics of computer security:
    • Don’t download files and e-mail attachments from unknown sources
    • Be wary of suspicious emails from seemingly reputable sources that request sensitive personal or corporate information
    • Create strong passwords with a mix of uppercase and lowercase letters and numbers and store them securely
  4. Discuss tools that can monitor Web use with content controls and alerts when employees are engaging in risky online behavior with your network admin.
  5. Deter hackers by having your network admin set up computer log-ins that locks after three unsuccessful attempts.

By empowering growth within your organization while educating employees on how to make data security part of their everyday lives, you can help nurture a corporate culture of both security and success. We are not advocating that you become Jim Carey in “Yes Man” but even a “yes” here and there sprinkled in between the “nos” will go a long way.

What do you think? Is employee education the key to more “yeses?”

Leave a Reply

No comments yet