Jaime Chanaga, CISSP, CISA

Executives in leadership roles need to have a clear understanding of the information security risks that their organizations face.  One of the most important aspects of leadership today is leadership by example.

One CxO with whom I worked with, strongly supported the creation of information security policies and procedures for all employees of his organization.  The organization created strong, balanced, and fair security policies--one of which prohibited the use of instant messaging software applications at work.  However, the CxO insisted that his laptop computer be exempt of the ban on instant messaging, so that he could communicate from work with one of his children who was attending a college in another state.  The CxO failed to understand that information security was everyone's responsibility and the increased risks to the organization by their actions.  The CxO failed to understand the lessons as an end user and consumer, first and foremost.

All of us as consumers and end users, can benefit from practical information security guidance.  Here are a few resources on the risks we face online.

A not-for-profit 501(c)(3) organization, the National Cyber Security Alliance (NCSA) is the go-to resource for cyber security awareness and education for home user, small business, and education audiences.   http://www.staysafeonline.org

OnGuardOnline.gov provides practical tips from the federal government and the technology industry to help you be on guard against Internet fraud, secure your computer, and protect your personal information.   http://www.onguardonline.gov

U.S. Federal Bureau of Investigation's (FBI) Cyber Investigations division has practical updated information on electronic scams (E-scams), common internet frauds, and useful advice for Parents on the dangers children face online.   http://www.fbi.gov/cyberinvest/cyberhome.htm