by Randall CraigFiled in: Blog, Make It Happen Tipsheet, Social Media, Strategy, ViewpointTagged as: Digital Strategy, Risk Management
Picture this scenario: An employee gets charged with a serious offense and the company’s name gets mentioned repeatedly in the news reports. The reporters found the connection to your organization by scanning through Social Media.
Or this scenario: A subcontractor tweets (or posts pictures) celebrating the conclusion of a major, confidential project. This alerts competitors, customers, and suppliers, resulting in millions of dollars of lost sales.
Or this one: Someone looks at your Facebook (or LinkedIn) profile, peruses your “friends” to determine your mother’s maiden name, then grabs your birth date and other freely available personal details. Then they call your cell phone provider and gain access to your account by “verifying” your identity.
Too often, we (or rather “people”) rarely think about digital risks, let alone how to protect against them. As individuals it is caveat surfer, but at an organizational level, the responsibility for protecting corporate assets, including customer information, trade secrets, and ultimately the brand, falls to IT security professionals. They sometimes even have the job of protecting us from ourselves.
Sadly, they are inadequately equipped to do this job, for many reasons:
Clearly, for an organization to manage digital risk effectively it needs to delegate information security responsibility well beyond the IT group. Yet this is a challenge when many managers cannot even identify more than a small handful of potential problem areas. (Test yourself: without reading onward, how many can you name?)
Here is a basic Social Media risk list; note that some are marketing risks, some are HR risks, some are technology risks, etc:
With such a broad range, how might one embed a digital security mindset within an organization?
Consider the following five step process:
Where are you in this process as an organization? This week, assess where you are and commit to doing one thing to reduce your organization’s digital risk level. And while you’re at it, check your own Social Media profiles and remove any information that might be used by a fraudster to impersonate you.
Does this topic resonate? Reach out to Randall: he can present it to your group. (More presentation topics)
See Randall’s professional credentials: Download one-sheet.
@RandallCraig (Follow me for daily insights)
www.RandallCraig.com: Professional credentials site.
Each week, get Randall’s 60-second nugget on translating digital knowledge to action. Curious? Read 600+ past articles.
If you are interested in receiving these each week (there is no cost), fill in your name and address below.
Contact us for more on Randall’s topics, availability, and audience fit.