Response as classmate
In this digital era, technology has given cybercrimes more capabilities and a bigger impact on various organizations. Over the past few years there has been an increase in cybercrimes, which has increased the importance of cyber security and creating a flexible cyber security policy. As technology continues to become more advanced there is more of a push for organizations to invest more in their cybersecurity. There have been many organizations like Equifax that has fell victim to a cybercrime, lost control of 145 million customer’s personal information. (1) Viewing cyber security policy as a larger program is a great plan because it essentially impacts everything in the organization. Gaining access to the facility and network deals directly with the cyber security policy implemented for the organization.
Creating a badge system that ensures that only individuals who are authorized and prescreened have access to the facility and the network is a vital aspect of any cyber security policy for an organization. It doesn’t matter how secure an organizations network is if a hacker could just walk in and access a computer on the system. This will be a good practice because each badge will be able to be tracked and identify who is accessing certain areas. (2) Access control is a big part of a cyber security policy and should be flexible in order to adapt to new vulnerabilities. The cyber security policy should be detailed in what is authorized and what is not. Essentially, it is utilized as a guideline for employees to ensure that they are meeting the companies’ standards.
There are not any networks that can have true security. It is nearly impossible because the company has to give their employees access to the system in or for to conduct daily activities. The human factor is a major vulnerability because it is something that no amount of training can guarantee that someone doesn’t get complacent and let a virus onto the system by clicking on an attachment. Cybercrimes are becoming more organized and cyber policies need to adjust as well. There needs to be a plan for when an authorized individual gains access to a company’s network. Having a well written policy will ensure that employees are aware of what needs to be done
Cyber security documentation is very important when it comes to running a long term successful organization. Each organization is different and may have different standards when it comes to certain things from within the company. If standards and procedures are not defined in the policy than it will be hard for everyone to stay on the same page. Staying incompliance with these standard will ensure that the organization is moving forward without any miscommunication.
Cyber security is something that needs to be invested in and will have to become a lifestyle. If not there will be more organizations that will become victim to more cybercrimes.