October 1, 2013 By Joanne Martin 3 min read

In the United States, October is National Cybersecurity Awareness Month and IBM is a corporate champion of the annual event, lending our name and support to this important effort. Cybersecurity is promoted in other countries as well during special weeks or months set aside each year to focus on resources the public needs to stay safer and more secure online.

Cybersecurity Ambassadors: Helping Towards a Safer Digital Society

IBM encourages our employees to participate in these awareness events and act as cybersecurity ambassadors with coworkers and in their communities to encourage safe computing habits. We tell our employees that individual actions have a collective impact. When each of us adopts safe computing practices and helps raise awareness among our coworkers and in our communities, we become a safer digital society, more resistant to attacks and more resilient if one occurs.

Whether you’re a Chief Information Security Officer (CISO) or a consumer, we all face some of the same cybersecurity challenges as we embrace new technology and social media that enable us to connect instantly from anywhere at any time. Cyber criminals are also taking advantage of our greater connectivity and information sharing with more sophisticated, targeted and damaging attacks.

According to the recently released IBM X-Force 2013 Mid-Year Trend and Risk Report, 55% of scam and phishing incidents deceive users with emails that look like they come from Internet payment companies, social networks and scanners or faxes.

Individuals and corporations can be damaged by social media exploits. Attackers have learned to monetize social media vulnerabilities and a black market has cropped up to trade compromised and fabricated accounts on social media sites, according to the report.

What you can do to help

As IT security leaders, we can leverage cybersecurity awareness events to reinforce best practices in our workplaces. At IBM, we have a month-long awareness campaign underway, in addition to our ongoing education and enablement programs. I want to also encourage you and your employees to serve as champions for cybersecurity in your communities.

A great way to learn is to teach. We encourage IBMers to lead a cybersecurity session at their local school or at a community event and we maintain a “Teach Security” wiki to help them do it.

Here are two resources that might help you:

  • The Stop.Think.Connect. site has some great educational materials, it’s sponsored by the National Cyber Security Alliance (NCSA) and the Anti-Phishing Working Group (APWG).
  • IBM also provides a Go social. Stay safe. Be smart. site offering tips on how to take advantage of social media without compromising security.

A recent study conducted for Stop.Think.Connect. revealed that consumers are concerned about their own personal online security and safety – and are ready to learn. They crave personal control and they seek information that’s actionable and easy to understand. Armed with this knowledge, we can all make more educated decisions about the places we visit online, the information we share, and the steps we should take in our workplaces and homes to protect our data, devices and networks.

 

So sometime this month, send a note to your team, let them know it’s Cybersecurity Awareness Month, and encourage them to pass it on and get involved by teaching security or reaching out to their families and communities.

Please share any other cybersecurity resources that you are aware of in the comments below.

 

 

More from CISO

Overheard at RSA Conference 2024: Top trends cybersecurity experts are talking about

4 min read - At a brunch roundtable, one of the many informal events held during the RSA Conference 2024 (RSAC), the conversation turned to the most popular trends and themes at this year’s events. There was no disagreement in what people presenting sessions or companies on the Expo show floor were talking about: RSAC 2024 is all about artificial intelligence (or as one CISO said, “It’s not RSAC; it’s RSAI”). The chatter around AI shouldn’t have been a surprise to anyone who attended…

Why security orchestration, automation and response (SOAR) is fundamental to a security platform

3 min read - Security teams today are facing increased challenges due to the remote and hybrid workforce expansion in the wake of COVID-19. Teams that were already struggling with too many tools and too much data are finding it even more difficult to collaborate and communicate as employees have moved to a virtual security operations center (SOC) model while addressing an increasing number of threats.  Disconnected teams accelerate the need for an open and connected platform approach to security . Adopting this type of…

The evolution of a CISO: How the role has changed

3 min read - In many organizations, the Chief Information Security Officer (CISO) focuses mainly — and sometimes exclusively — on cybersecurity. However, with today’s sophisticated threats and evolving threat landscape, businesses are shifting many roles’ responsibilities, and expanding the CISO’s role is at the forefront of those changes. According to Gartner, regulatory pressure and attack surface expansion will result in 45% of CISOs’ remits expanding beyond cybersecurity by 2027.With the scope of a CISO’s responsibilities changing so quickly, how will the role adapt…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today