Best Practices in Workplace Security
Don’t invite attackers into your workplace. Observe the following security practices to help ward off information security threats.
Information security threats, especially in the workplace, do exist. And if you’re not careful, you can become a victim which puts you and your entire company at risk.
In view of this, Globe Business, the information and communications technology arm of Globe Telecom which is currently running its #makeITsafePH cybersecurity campaign, shares some tips to prevent security attacks from happening.
1) Don’t share your accounts and passwords
If you are given access to company services through an account, never share it with anyone to make sure that you’re the only one who has access to your own accounts. If you need to write it down, keep it somewhere hidden like your wallet or a drawer with a lock. If you’re using a web browser, avoid using the “Save this Password” option especially if someone else is using your workstation.
2) Keep your devices password-protected
Whether you’re using a company PC, laptop, or smartphone, make sure to keep those devices password-protected as these have access to company information. Make sure to use complex passwords so they’re not easy to guess, and change them every now and then. If you need to leave your PC unattended, activate a screensaver with a password to avoid other people from snooping around. Also, make it a habit to log off your accounts before you leave your workplace.
3) Be wary of social engineering schemes
Social engineering, by definition, is the use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes. This is one of the most commonly used techniques by cybercriminals as it doesn’t involve high-tech gear and heavily relies on human interaction.
Social engineering can happen over the phone or via email. A hacker may pretend to be an employee of a bank or a telecommunications company and ask you for sensitive info like full name, address, date of birth, or copies of your IDs, then use them to steal your identity. If ever you encounter anything similar to this method and can’t verify the person on the other line, avoid giving out your information and just visit your bank or telco personally.
4) Don’t use your company device for personal activities
Company devices like laptops or phone are used for company business, which means you should avoid using it for your personal activities like social media browsing, chatting, downloading files over the internet, or visiting potentially malicious websites. Company laptops may contain sensitive or confidential information and if those fall into the wrong hands, it could disrupt your company’s operations and could cost you your job.
5) Don’t leave confidential files on your desk
Information security extends towards non-digital files. If you have files that contain sensitive information like email accounts, usernames, and passwords, don’t leave them lying around on your desk. The same goes for your credit card bills. Make sure to keep them in a secure place, and if no longer needed, destroy those files by shredding them before throwing away.
6) Keep your workplace virus and malware free
Make sure that your work PC or laptop has an antivirus software installed and always up to date. If your IT personnel recommends an update to your system, do not ignore it and simply comply. And if you intend on using an external storage device like a CD or USB thumb drive, have your IT personnel check on it first to make sure that it’s not infected by anything that could harm your system.
Information security in the workplace is everyone’s responsibility and not just by your IT department. If you value you and your company’s privacy and confidentiality, then make sure to take the recommendations mentioned above seriously.
For more information on the latest cyber security trends and solutions, visit http://business.globe.com.ph/solutions/cybersecurity.html or contact a Globe Business Account Manager.