Staff buy-in: Your company needs you
- Article 13 of 33
- SC Magazine, February 2008
All the technology in the world won't help if your employees don't follow security policies, so how can you win them over?
Page 1 | Page 2 | Page 3 | Page 4 | All 4 Pages
The HR and legal departments can be useful, as they can ensure that employee contracts include suitable rules about security and IT use, together with appropriate actions in case employees break them. This means that if someone does cause a security breach, the contract, together with the training given to them, significantly reduces the chance of a lawsuit for unfair dismissal being filed against the company. Liaising with HR means security training can be part of the induction programme, avoiding the problem of security being seen as something “other”.
Marketing, training and other corporate communications departments have those vital people skills that some IT specialists lack. When creating awareness campaigns, marketing can help to devise the most effective methods of getting the message across. And while IT can certainly provide the information about security that needs to be given to employees, a training or HR department is far more likely to be able to deliver seminars and courses in a way that non-technical people will appreciate.
Page 1 | Page 2 | Page 3 | Page 4 | All 4 Pages