October is National Cyber Security Awarness Month. Unfortunately, only a fraction of business and community leaders know that such a labeled month exists. How can the message of information security be considered important if those in positions of influence do not support, sponsor, or encourage that message?
I just went out to the White House web site. Not even a link to the DHS site that relates to National Cyber Security Awareness month. I guess this lack of executive level support for information security, as evidenced by the still unfilled National CyberSecurity position, is contagious.
Heck, maybe the US Congress may post something in regards to this month. Nope. Nothing on either the House or the Senate page.
In your organization, is there any awareness effort whatsoever done in collaboration with this month long focus on cyber security? Why not? Is there no desire to develop appropriate security-conscious behavior within our workforce? Is there no value to focusing attention on the protection of personally identifiable information that customers have entrusted us with? Does security only matter after a breach? Is reactive measures the best we can do?
There are a number of organizations and websites that have taken an active role in spreading the word during this Cyber Security Month. Kudos to them. Their efforts are clearly needed and appreciated by those who take information security seriously. While the technical side of security is certainly illustrated we need to do a better job of driving the message into the non-technical, business-minded side of the house. We need to drive home identity protection to our school children so that information security is a habit, not a chore and something that is carried with them into their future careers and endeavors.
When we can walk down the street and see banners related to National Cyber Security Month, when television programming starts with security reminders, when there are news segments throughout the month related to different aspects of information security, when security is part of the curriculum in schools when using computers and technology, then perhaps this whole National Cyber Security Month will have found its place. I hope we someday get there.
Connect with me