Our last blog examined the first component of what your Security Model should look like, which is:
Great Security = Technology + Human Vigilance
We covered the first component of this model, Technology in some detail already. The bottom line is that your business needs to have the latest Security technology at hand in order to stay ahead of the Cyber-attack threat curve. But, the latest doesn’t necessarily mean expensive either. You can get good tools at an affordable price, it’s a matter of finding them with the right help. In this regard, it was recommended that you consult with your local Small Business Administration (SBA) or Chamber of Commerce to find an affordable Security consultant whom can help you.
The second part of this model is that of Human Vigilance. But, what does it exactly mean? It can be defined as follows:
“The ability to maintain concentrated attention over prolonged periods of time. During this time, the person attempts to detect the appearance of a particular target stimulus.”
Simply put, this means that you, as the business owner, have to keep the Security of your entity as one of your highest priorities, with a sharp, devoted focus to it. Your intended target stimulus to be on the lookout for are the Cyber threats and risks which you could be susceptible to.
But at this point, you may be scratching your head and wondering, “How do I have all the time to keep track every day, what the latest threats are??”. Truth be told, you don’t have to. After all, you are the business owner, and your job is to run your business. Delegate these tasks down to your IT department, and assign specific responsibilities to each division of it.
For example, your Server Administrator should keep track of the threat landscape as it relates to the server environment, and the same for your Database Administrator, etc. Ultimately, they need to report to the head of IT and go over their findings, and formulate a strategy as to what needs to be implemented in order to combat any type or kind of Security threat or risk.
In other words, having great levels of Human Vigilance from within your IT department means that there is a system of responsibility and accountability put into place. But however, striving to achieve this doesn’t mean either that your IT staff have to constantly glued to their computer monitors 24 X 7 X 365.
What it does mean is that you give them the tools to be knowledgeable as well. Examples of this include subscribing to the latest trade publications, attending conferences and seminars (this is a great opportunity to share with and learn different experiences from other companies), and even subscribing to the latest IT e-bulletins, which are free. Human Vigilance also means that you foster a line of open communications and honest collaboration.
After all, it takes a village to stay ahead of today’s Cyber threat landscape!!!