READYColorado Blog: Cybersecurity -- It's Everyone's Job to Ensure Online Safety at Work

This week we kick off week three of National Cybersecurity Awareness Month with a focus on safety in the workplace.  The information below was prepared by  The National Cyber Security Alliance (NCSA) and DHS.  DHSEM supports cybersecurity through the CIAC and our READYColorado programs.  
 
The lines between our work and daily lives are becoming increasingly blurred, and it is more important than ever to be certain that smart cybersecurity practices carry over between the two. When you are on the job – whether it’s at a corporate office, local restaurant, healthcare provider, academic institution or government agency –‒ your organization’s online security is a shared responsibility.  You can also follow our READYColorado Twitter or Facebook page for more tips. [You do not need a Twitter or Facebook account to see the posts]
 
A culture of cybersecurity in your organization includes all employees knowing how to protect themselves and the business from online threats. Here are some quick wins that can make you safer and more secure at work and at home.
 
1.  Keep a Clean Machine Having the latest security software, web browser, apps and operating system is the best defense against viruses, malware and other online threats. Remember, mobile phones, point of sale systems and tablets need updating too!   
 
2.   Lock Down Your Login Enable the strongest authentication tools available for your online business accounts, such as biometrics or a unique one-time code through an app on your mobile device. This security feature is also available on personal accounts such as email, bank and social media.
 
3.   Back It Up Put in place a system – either in the cloud or via separate hard drive storage – that makes electronic copies of the vital business information on a regular basis. At home, make regular backups of all your important docs, files and photos.
 
4.   Bring Your Own Device (BYOD) Now more than ever, employees are using their personal smart devices – such as PCs and smartphones – for work purposes. It’s important to consider where sensitive company, customer and/or employee data is being accessed and implement a policy to BYOD use.
 
5.   When in Doubt, Throw it Out Whether at work or in their personal lives, employees should know not to open suspicious links in email, tweets, posts, online ads, messages or attachments – even if they know the source.
 
6.   Cybersecurity in the Workplace is Everyone’s Business It’s not just the job of IT staff or business owner to ensure online safety at work. Creating a culture of cybersecurity includes ALL employees knowing how to protect themselves and the organization and understanding the cyber risks as the business grows or adds new technologies or functions.
 
  RESOURCES FOR KEEPING YOUR BUSINESS SECURE ONLINE 
 
CyberSecure My Business™ – A nationwide program from the National Cyber Security Alliance (NCSA) helping small and medium-sized businesses learn to be safer and more secure online: staysafeonline.org/cybersecure-business 
 
National Institute of Standards and Technology Cybersecurity Framework – Standards, guidelines and best practices to manage cybersecurity-related risk: nist.gov/cyberframework Federal Trade Commission’s Small Business 
 
Resources – Videos, free bulk order resources, blog posts, email notifications and more to help you avoid scams, protect your computers and networks and keep your customers’ data safe: ftc.gov/about-ftc/bureaus-offices/bureauconsumer-protection/small-businesses United States Computer 
 
Emergency Readiness Team (US-CERT) Resources for Small Business – Specially designed to help SMBs recognize and address their cybersecurity risks: us-cert.gov/ccubedvp/smb  
 
NCSA_2018_Week3.png