[authors: Ron Yearwood, and George Platsis]
Introduction
As we progress through 2023, both new and old cyber challenges remain, but opportunities for improvement are present. For the upcoming year, assume the following:
Everyday users may find the realities daunting. They may even feel dismissive about cyber-related responsibilities, leading them to ask, “Well, what do you want me to do about it?”
Cyber experts simply want everyone to help “protect the house” by creating a more resilient organization and atmosphere. In this series, J.S. Held provides information for security professionals and everyday users alike, with suggestions to identify means of avoiding internal failures and/or a central collapse or breach of information systems. How? Through a federated approach that relies on personal responsibility and accountability.
This two-part paper focuses on what everyday users can do to help protect data, through the support of leadership and a well-established and well-maintained information security program. Specifically, this mini-series identifies how to resolve a key pain point—ensuring users know both why and how actions are being taken—and managing two evolving conditions, changes in the workplace and malicious actor tactics.
We begin by identifying who is responsible.
Knowing the Difference Between Enterprise and Individual Responsibilities
Information security and risk management leaders will generally focus on “the program” of the enterprise, but they, like all others, are ..
Support the originator by clicking the read the rest link below.
