Why HR should be involved in cybersecurity?


cybersecurity


Cybersecurity is one of the biggest threats to everyone, whether it’s a government department or a small business. Basic security policies are usually enough to effectively reduce the risk of exposure, as long as employees are committed and consistent in adhering to them. 

HR departments can play a significant role in ensuring cybersecurity is maintained. 

Changing employee attitudes

 

In order for an organization to not be vulnerable to a cyber-attack, employees need to understand that the responsibility for cybersecurity does not only lie with the IT department. Smaller companies are becoming an easy target and the HR department can play an important role in educating employees. Employee attitudes and behaviour are vital in ensuring a more secure organization. 

Practical security measures are easier to maintain

 

Deciding on the right type of security policy is important so that it can be practical and appropriate. One example is the issuing of randomly generated passwords, which are difficult to crack. Then again, because many people may need to write passwords down in order to remember them, it might actually defy the point. Another example that may raise questions is monitoring, where employees may feel that they are not trusted or that they have no privacy. 

This is where the HR department can play an important role in helping decide which will work best for the company.

Identifying risk factors

 

Insiders may unknowingly be abetting with attackers on the outside of the company or could be doing it for revenge. This could be taking place through an initial social media contact with an unhappy employee by the attackers. The HR team need be vigilant since most employees take action against their employers within a 30-day period of a trigger event at work. Increased monitoring from the HR department gives them the opportunity to intervene if needed. Lastly, the HR department needs to be responsible for employees leaving the company and to ensure that no sensitive information leaves with them. 

HR departments can be the gatekeepers to any threats by ensuring that they educate employees and give them security guidelines.


Comments