IT security shouldn’t be ‘because I told you so’ – consult employees on policy
"IT security shouldn't be dictated from on high, as trusting and involving employees helps to nurture a greater security culture, an industry panel representing leading banking, media, engineering and security solution firms have agreed.
Speaking at Computing's 2016 Enterprise Security and Risk Management Summit, Anton Karpov, CISO at Yandex, Russia's largest search engine, suggested that security 'shouldn't be because I told you so'.
Speaking as the CISO of a firm composed of many technically proficient employees, Karpov said that involving skilled and savvy people in security culture is an easy win, but requires trust.
‘It's important to explain why you have certain rules or systems deployed, but you need to realise that technical people are open to coming to you and telling if something is wrong. I'd say it's important to be able to trust your engineers and employees,’ he said.”
• Tech jobs set for big pay rises in 2017
• Do you have what it takes to be a great CIO?
• Applications for technology visas 'rise after Brexit'
• Philip Hammond's Autumn Statement: what it means for technology in the UK
• Tablets: why businesses are falling in love with them
• Britain's wartime codebreaking base could host a national cyber security college
• IT security shouldn’t be ‘because I told you so’ – consult employees on policy
• Cloud-driven IT decentralisation increases security risk
• 99 in 100 UK companies are not capitalising on the digital economy
• And finally…Are iPhone owners really less honest than Android users? That's what this study says