What do CEOs and first-day employees have in common?
Well, hopefully they’re both reporting suspicious emails, accidental clicks, and instances of lost or compromised data within your organization. Unreported incidents like these can mean lost revenue, hefty fines, and perhaps most serious of all: irreparable harm to your organization’s reputation.
A sound incident reporting infrastructure and accompanying policies are a vital part of any cybersecurity strategy. Such tools and procedures will help keep security incidents to a minimum and minimize the damage of any attacks that might get through.
Incident Reporting as Cybersecurity EKG
But incident reports can have another benefit: A tool to tease out what cybersecurity risks threaten your organization the most. Think of incident reports as a cybersecurity EKG, measuring how often your employees get phishy emails or hit with other social engineering attempts.
Is one of your executives reporting an uptick hyper-targeted phishing attempts (also known as “spear-phishing” or “whaling”)? Might be time for refresher c-suite-level training content aimed at your whole executive team. Is an HR staffer getting more emails with suspicious attachments claiming to be sensitive employee information? An HR-tailored course might be in order.
On a company-wide level, incident reporting data (teamed with whatever automated behavior analytics tools you might have) can be used to identify a number of different trends:
- Are we seeing a recent uptick in risky behavior?
- Is there a specific behavior that stands out?
- What sectors of the organization produce the riskiest behaviors?
This data will help you answer important questions about the kind of employee awareness program you’ll need. What sort of threats are you seeing most? What associated behaviors might need to be changed or improved through training and reinforcement? What tools will you need to bring about these changes? An analysis of your incident reports, teamed with tools like automated event logs, will make all these questions easier to answer.
A Comprehensive Awareness Approach
Scrutinizing your organization’s human-related security risks is vital to any comprehensive awareness program. Your understanding of these risks allows you to develop and deliver the kinds of content that ensure your people, from the boardroom to the breakroom, get the most relevant training and reinforcement experience possible.
Toward this end, and to recognize Week 2 of National Cybersecurity Awareness Month (NCSAM) Cyber from the Breakroom to the Boardroom, we’ve pulled together a toolkit to help make sure your organization is cyber aware at all levels (as it should be). Our Incident Reporting & Using Data Toolkit includes:
- Two animations from MediaPro on incident reporting and software updates
- Stop. Think Connect.’s (STC) poster on keeping software up to date
- MediaPro’s Use Existing Data and UBA to Improve Your Awareness Program video
- MediaPro’s Using Data to Inform Your Awareness Program white paper
With this toolkit, you’ll be one step closer to a better-honed awareness program that addresses your organization’s unique needs.
Want to get the absolute best NCSAM toolkits delivered to your inbox each week in October? Sign up here today!
MediaPro is proud to work with Stop. Think. Connect as an NCSAM Champion.
Coordinated and led by the National Cyber Security Alliance and the U.S. Department of Homeland Security, NCSAM has grown exponentially since its inception, reaching consumers, small- and medium-sized businesses, corporations, educational institutions and young people across the nation and internationally.
NCSAM 2015 was an unprecedented success, generating more than 1,700 news stories –an increase of 74 percent from NCSAM 2014’s media coverage. Kicking off NCSAM’s 13th year, this October presents a new opportunity to expand cybersecurity and privacy education and awareness globally.