October is Cyber Security Awareness Month. Businesses of all sizes and in all industries face a myriad of cyber threats, from both external and internal sources. The COVID-19 pandemic and the associated lockdown have provided cybercriminals with additional opportunities to infiltrate corporate networks and steal their data. In 2020, cybercrime caused nearly $ 1 trillion in damage, according to McAfee’s “The Hidden Costs of Cybercrime” report.
Because the internet touches all aspects of business, countermeasures require a coordinated and holistic approach. Cybercriminals often exploit internal business vulnerabilities, and the general consensus is that employee training is a key aspect of defending your data and networks against cybercrime. “Cyber security awareness requires behavior change in people employed in the company,” says Stanley Dogbatsey, NATED facilitator at the CTU Training Solutions Center of Excellence (Pretoria Campus).
He goes on to say that some of the biggest cybersecurity threats businesses face today can be stopped dead in their tracks by alert staff. “Social engineering attacks, such as phishing, rely on users clicking on links or attachments to gain access to the network. Informing your employees about the appearance of suspicious emails or links can help prevent this type of attack from succeeding. Ransomware is another common cyber threat, which relies on spam emails or weak user credentials to gain access to the corporate network and cause large-scale data loss. Again, educating employees on how to change their login information, not share it with anyone, and not write it down on a sticky note can go a long way in countering this type of cyber threat.
Dogbatsey says, “The overnight shift to a remote workforce has driven companies to rush their digital transformation journeys and move to the cloud. This often resulted in vulnerabilities that cybercriminals could exploit. Again, educating users could have helped counter some of the attacks that have been reported in the media. “
It is clear that the importance for companies to develop their employees so that they can defend the business against the cybersecurity threats of today and tomorrow cannot be overstated.
How businesses can improve their cybersecurity
Skills shortages in computing in general and Internet security in particular are critical threats to the future growth of South African businesses. Dogbatsey says, “Companies must have a suitable skills development plan coupled with cybersecurity awareness training to get the most out of deployed cybersecurity technologies. This plan should enable the company to systematically develop employees to fill the gaps in computer and internet security so that the company can achieve and maintain cybersecurity and strengthen its human capital at the same time.
CTU Training Solutions offers a wide variety of computer and internet security qualifications and courses to help businesses and their associates keep their skills and knowledge up to date to protect their business from any cyber threat.
The CompTIA Security + certification designates competent professionals in the field of security, one of the most dynamic areas of IT. Security threats are increasing in number and severity, and the gap between the need for security professionals and skilled IT personnel is the largest of any IT specialization, according to a 2008 CompTIA study.
CompTIA Cybersecurity Analyst (CySA +) is an IT staff certification that applies behavioral analysis to networks and devices to prevent, detect, and combat cybersecurity threats through continuous security monitoring.
- Microsoft AZ 500 Azure Security Technologies
This course equips IT security professionals with the knowledge and skills to implement security controls, maintain an organization’s security posture, and identify and remediate security vulnerabilities. It includes identity and access security, platform, data and application protection, and security operations.
- Technical support and cloud solutions
In this department, the IT Technical Support qualification creates entry-level system support professionals with a good fundamental knowledge of the technical support field. The next qualification in the Technical Support and Cloud Solutions path, Cloud IT Solutions Administrator, relies more on the technical skills required to advance to the Cloud IT Solutions Engineer rank.