One of the speakers at the cyber security conference last week blamed the users when it came to cyber security. They also were concentrating on big business solutions when the most people work form small organisations.
I never blame the users, I also will not get involved in a blame game. That does not mean I have not sifted through logs files, CCTV and gate records to find out who carried out malicious actions at my clients. I have also tracked down who clicked on that link or gave away their credentials but only so we can respond to an incident. Not to blame them.
Dan Allen at HP Wolf Security has written about this, this month:
Stop Blaming Users for Breaches: Three Strategies for Protecting Users | HP Wolf Security
Your Takeaway
You need a good cyber security culture, coupled with excellent tools and your team knowing they are part of the solution not part of the problem.
Clive Catton MSc (Cyber Security) – by-line and other articles
Further Reading
Don’t Blame your Team – “Just Click Here” – CyberAwake