Employee Information Security Awareness

Employee Information Security Awareness

We try to complete our tasks using numerous technological tools and services 
in a working day. The number of devices that work without being connected to 
the Internet is now very low compared to the past. However, how many of us 
use these equipments properly in our workplace? Unfortunately, in an average 
business, employees' information security awareness is very low. Even though 
it is a matter of individual self-education, it is also an issue that falls under the 
responsibility of business owners: employee information security awareness. In 
any undesirable situation, the business owner will be the one who will suffer 
the most. Therefore, small steps taken in time will help to prevent possible 
major problems in the future. So, what is included in this awareness and how 
can this awareness be brought to employees?
First of all, just as there are various rules in the working environment that 
enable the business to operate properly, rules and limits in information security
area should also be determined and announced to employees.

 

 

Responsibilities of the Employer

- Maintaining effective security components in the corporate network and 
updating operating policies accordingly,
- Ensuring company-wide protection by controlling internet access with a 
firewall, ensuring end-user security with software such as antivirus and DLP
Applying the AAA framework, one of the basic information security standards,
- To provide employees with correct internet use and information security 
training.

Employee Responsibilities

- Determine strong passwords and not share them with anyone,
- Not leaving notebooks with username and password lying around,
- You should be cautious about e-mails of unknown and unreliable origin,
- Two-factor authentication (2FA) should be activated in application logins that 
contain critical information,
- Lock the screen before leaving the computer. (Windows+L)