Sunday, December 15, 2019
  • DEF CON 27, Social Engineering Village, Daniel Isler’s ‘The Voice Told Me To Do It’
  • The Joy of Tech®, ‘Look, Up In The Apple Store… It’s Super Monitor’
  • DEF CON 27, Social Engineering Village, Chris Pritchard’s ‘The Basics of Social Engineering’
  • Understanding Policies: Disable Guest Account and Built-in Guest Account Status
  • The Top 20 Security Predictions for 2020

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Security Bloggers Network 

Home » Security Bloggers Network » Cybersecurity Is Everyone’s Job

Cybersecurity Is Everyone’s Job

by Maurice Uenuma on July 2, 2018

As we all know by now, the human factor is crucial to enterprise security. Cyber attacks routinely exploit vulnerable human behaviors to gain entry, since organizations must trust their own people—or at least some of them—with access to critical systems.

Humans make decisions on risk tradeoffs, funding for security programs, adherence to policies, and hiring, factors which impact the organization’s security posture in many ways. From the newest intern to the chief executive, all members hold the power to harm, or to help, the security of sensitive data and essential systems.

Acknowledging this is a necessary but insufficient step. The humans we rely on must know what to do about all of this. Given that cybersecurity is neither the expertise nor passion of most people, there must be an easy-to-understand and easy-to-do set of actions that everyone can perform to do their part.

It turns out that for all of the resources available on security awareness and training, there is precious little available on security guidance for employees based on their business functions. That is, guidelines for people based on their job role: security guidelines for Finance and Administration professionals or security guidelines for Legal & Compliance workers.

It was to address this need that the Workforce Management subgroup of the National Initiative for Cybersecurity Education (NICE) launched a project to draft guidelines for all members of an organization based on business function.

NICE is a program of the National Institute of Standards and Technology (NIST), the lead federal agency for maintaining the Framework for Improving Critical Infrastructure Cybersecurity (commonly known as the Cybersecurity Framework, or CSF), among other standards. (Many readers may also be familiar with NIST for the Special Publication 800 series, which provides detailed technical standards for security.)

The Workforce Management subgroup, part of the (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Maurice Uenuma. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/cyber-security/cybersecurity-is-everyones-job/

July 2, 2018July 2, 2018 Maurice Uenuma Cyber Security, Cybersecurity, Featured Articles
  • ← Women in Information Security: Rebecca Herold
  • Phishing Campaign Uses TLS Certificates to Impersonate Netflix and Steal Users’ Account Credentials →
Featured Blog

Enzoic

Automate Password Policy & NIST Password Guidelines

Enzoic

Microsoft Highlights The Risk of Stolen Passwords

Enzoic

Enzoic Customer Profile: IDShield

Enzoic

Old vs. New Methods for Employee Password Hardening

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Predictions 2020: Don’t Forget the Current Threats
Trend Micro Looks to the Cloud for Security
Encryption Wars, Part IV: Barr vs. Big Tech
Cyberattacks: Top 5 Ways You Could Be Hacked in 2020
Hacking Ring Security Cameras: Amazon Makes it Easy
Behshad Rejai on the past, present, and future of software development
Maze Ransomware Used in Pensacola Cyber Attack
Data Security Incident Disclosed by Cheyenne Regional Medical Center
Top 5 Cybersecurity Trends to Prepare for in 2020
How Hackers Get Our CVV Numbers | Avast

Upcoming Webinars

There are no upcoming webinars at this time.

Download Free eBook

The Next Generation of Application Security

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Cyberattacks: Top 5 Ways You Could Be Hacked in 2020
Cybersecurity Industry Spotlight Security Awareness Security Boulevard (Original) 

Cyberattacks: Top 5 Ways You Could Be Hacked in 2020

December 13, 2019 Michael Bruemmer | 2 days ago 0
Predictions 2020: Don’t Forget the Current Threats
Cybersecurity Industry Spotlight Network Security Security Boulevard (Original) 

Predictions 2020: Don’t Forget the Current Threats

December 12, 2019 Craig DAbreo | 3 days ago 0
Predictions 2020: Data Security Next Year and Beyond
Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

Predictions 2020: Data Security Next Year and Beyond

December 10, 2019 Ameesh Divatia | Dec 10 0

Top Stories

Hacking Ring Security Cameras: Amazon Makes it Easy
Cybersecurity Endpoint Featured Identity & Access IoT & ICS Security News Security Boulevard (Original) Spotlight 

Hacking Ring Security Cameras: Amazon Makes it Easy

December 13, 2019 Richi Jennings | 2 days ago 0
Cyberhaven Applies Behavioral Analytics to Better Secure Data
Cybersecurity Data Security Featured News Security Boulevard (Original) Spotlight 

Cyberhaven Applies Behavioral Analytics to Better Secure Data

December 12, 2019 Michael Vizard | 3 days ago 0
Apple Passive-Aggressive PR Sparks Privacy Fear (Yet Again)
Cybersecurity Endpoint Featured Mobile Security News Security Boulevard (Original) Spotlight Threats & Breaches 

Apple Passive-Aggressive PR Sparks Privacy Fear (Yet Again)

December 6, 2019 Richi Jennings | Dec 06 0

Security Humor

via the Comic Noggins of Nitrozac and Snaggy at The Joy of Tech®

The Joy of Tech®, ‘Look, Up In The Apple Store… It’s Super Monitor’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy
  • DMCA Compliance Statement

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2019 MediaOps Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.