Recently, Neil Passingham (GardPass Cyber founder) led a team consisting of HPE colleagues plus academics from University College London, a member of the Research Institute in Science of Cyber Security (RISCS) and the UK Government’s National Technical Authority for Information Assurance (CESG) to produce a white paper urging organizations to better and more effectively engage employees in order to improve cyber security.
This white paper provides guidance and sets out a framework for businesses and institutions of all sizes, to tailor Information Security guidance (communications, education and training) for their staff, such that it remains relevant and empowers staff to feel aligned with their organisations’ cyber security objectives.
In an environment where we see users being targeted in social engineering campaigns by all actors from low level criminal organisations to nation states, it is vital that we learn how to protect our organisations from the level of threat that they each face. Therefore, users must be made to feel involved with the success of the organisation and its protection. In this paper we outline how, through progressive engagement, users can become the strongest link in the organisation, not another vulnerability.