While video management systems have evolved into enterprise management tools for situational awareness, the need for entire organizations to heighten awareness where it comes to cybersecurity measures has likewise intensified.
Here are some insights as to what those customers ought to be doing and guidance for you as the integrator to help keep them on track. At the same time, integrators should be following these practices within their own businesses.
The strategy of “defense in depth” incorporates prevention mechanisms as layers within a multitiered initiative, with detection and response mechanisms integrated in the same layers, as well as others.
While technology plays a key role on multiple levels, another important layer of prevention is the creation of a security awareness culture within the organization.
In fact, insider threats from employees frequently appear in global security reports as a top cause of unintended data breaches. Establishing a culture of security awareness within an organization is both as much a mode of operation as it is a mindset, since most potentially harmful acts are usually based on routine behaviors such as clicking on a link or email attachment.
By providing the knowledge and tools that help change behaviors, security awareness programs add to every employee’s ability to consciously make more secure decisions. The importance of security awareness cannot be understated and management needs to emphasize the significance of efforts to promote it within the organization.
This means more than just providing PowerPoint slides or training videos. Awareness is a continual process of constant improvements and adaptation. Programs with dated content that don’t reflect changes in social media policies and bring your own device (BYOD) programs, or do not meet compliance regulations are of little value in today’s environment.
Business resilience is not just about recovering from disruption — it’s about anticipating and preventing it. Security awareness programs that change predisposed mindsets are a great place to start. It is important to remember that an effective security awareness program is not just about “awareness,” it is about defining and reinforcing good habits.
For integrators not entirely comfortable in the cybersecurity advisory role, a viable solution is seeking the help of consultants to determine how to best assist your end customers in implementing security awareness programs and practices aimed at better protecting everyone’s valuable data.
Jon-Louis Heimerlis Senior Manager, Threat Intelligence Communication, NTT Security.
This article was originally published by sister site Security Sales & Integration.