Now that you have read The Ping: What is Compliance?, you are probably especially aware that your company might need to become compliant in one or more areas. Whether that be PCI, CJIS or something else, you might need to meet minimum regulations to keep your company safe.
Criminal Justice Information Services (CJIS)
Criminal Justice Information Services, or CJIS, is a division of the FBI that provides criminal justice information needed to perform law enforcement duties. It “serve[s] as the focal point and central repository for criminal justice information services in the FBI.” – FBI. In Texas this information is disseminated via the DPS and includes details such as vehicle registration, criminal history, driver’s license, license plate, firearm, etc. Because this information is highly sensitive and needs to be protected, CJIS provides security compliance requirements and performs audits to ensure these requirements are being met. Below are just a few example requirements of the Security Policy…
- Security Awareness Training
- Perimeter Intrusion Detection
- Advanced Authentication
- Maintain Log History
- Change Management
- Device Encryption
Failing a single audit flags an agency as non-compliant. If compliance is not achieved, the agency can lose access to the information and tools needed to perform their duties.
Building an Effective Human Firewall
Cyber attacks aren’t just getting more frequent, they are also becoming significantly more vicious and sophisticated. One reason for this is because Cybercrime is easy to do…anyone can find the tools on the dark web and easily start their own cybercrime business. Now, more than ever, is time to take stock of your countermeasures with a focus on your staff as the likeliest entry point for cybercrime attacks.
Cyber criminals count on the fact that busy people perform hundreds, if not thousands, of daily actions on a computer or device connected to the internet and they know that most of those actions are performed automatically and without much thought. As a result, the majority of today’s data breaches result from human error, making cybersecurity a “people problem” as well as a technology issue.
The solution to this people problem goes beyond IT and involves cultivating an entirely new employee mindset around cybersecurity. Our recommendation is to create an expectation of 100% participation…it only takes one person to click on one link to bring the system down.
When fully engaged, these three steps creates a formidable human firewall capable of spotting and preventing even the most sophisticated cybercrime attempts and offers a significant step towards mitigating the human error that is behind 95% of the cyber breaches occurring today.
What is Cross Training?
For me, I like riding my bike but need to throw in a run sometimes to break up the monotony. You’re probably thinking, “That can’t be the cross training you’re talking about. What does that have to do with my business?”
The cross training I really should be talking about is the process that will keep your employees well trained and keep the critical functions in your business humming along regardless of who is out sick or on vacation.
For the past decade or more Coaching has been increasing in popularity both inside and outside the workplace. CEOs, Business owners, HR departments, and Managers more and more are recognizing the need and benefit of coaching within their organization and business. Why? There are number of reasons. But before I share a few reasons, let’s start with a working definition for coaching:
Coaching can be defined as: the process of equipping and helping individuals fully develop themselves, thereby unleashing their potential and producing effective results in their lives, careers, businesses or organizations.
The day has finally come! What else can you do to successfully onboard that new employee? Let us help! If you need a refresher on how to start, check out our previous blog!
Training is one of the most important parts of onboarding. Although it may be mundane, having a clearly defined training process is an important component of any successful new hire integration plan.
For many, computerized training can seem tedious. Most of us try to “rush” through it. Doing so may cause your new hire to overlook key pieces of info, or to get that “glazed over” look half-way through a single day. Best practice for digital training is to break up the sessions as much as possible. Then, schedule sit-down meetings with the new employee, engaging with them on some of the content you know they have recently gone through. Solicit feedback and encourage honest opinions. These opinions, if taken with an open mind, could lead to positive change for your organization and possibly even a happier, healthier work environment.
Onboarding can be one of the most effective ways of helping new employees quickly get acclimated to your company processes. Onboarding allows you to provide new employees with the right knowledge, resources, and tools to be successful. You’ll also be providing your company with an employee that meshes well with your organization.
First, let us be clear: a proper onboarding process is not simply putting somebody through orientation. Orientation programs typically prepare someone for their first day at work. Onboarding is much more focused and long-term, transitioning new employees into being an engaged part of their new work family. The following items will help you develop a smooth and successful onboarding with your new hire.