Making your people your cyber security and GDPR heroes: what effective training looks like
- IT Services
February 16, 2018 |
65 min read
- IT Services
Ensuring all your people understand their roles and responsibilities as part of GDPR is an essential part of your accountability regime under the new regulation. But there’s a challenge. We know that the great majority of data breaches are caused by human error – typically the unwitting actions of anyone in the organization, regardless of their seniority or role.
The typical compliance led, ‘all staff, once a year’ approach to DPA and Cyber Security training that most organizations continue to rely on does not influence, or sustain long-term behavioural change. At best, it reminds us of some essentials; at worst, it’s treated as a necessary evil, a distraction, and something to be completed, and forgotten, as quickly as possible.
We need to take a different approach. One that moves beyond the annual ‘tick-box’ approach and provides the simple, practical guidance everyone needs in ways that truly engage our people. So what can organizations do to provide more ‘effective’ awareness training for GDPR?
Shadi A. Razak (CTO, CyNation) and Nick Wilding (General Manager, Cyber Resilience, Axelos) presented an informative webinar that outlines your GDPR awareness training obligation, the challenges that come with building compliant behaviours and ideas for what effective training looks like.