Our website is set to allow the use of cookies. For more information and to change settings click here. If you are happy with cookies please click "Continue" or simply continue browsing. Continue.

Law for Business

Knowhow - guidance - precedents

11 NOV 2015

Employees key part to play in cybercrime

Pam Loch

Managing Partner


Employees key part to play in cybercrime

As has been apparent from recent cybercrimes, not only are they on the increase but the next target could be your business.

Employees play a key part in preventing cybercrimes. It’s important therefore that they have been trained and know how to respond – or not respond!

Training employees to be aware of what a suspicious email may look like is the first thing to do. You may think it is obvious that the slightly misspelt email address is a giveaway but don’t assume all your staff will react like that. Unfortunately they may be curious to see if they have won lots of money and click on the links with a virus attached.

Not everyone has the same awareness or understanding, so having a policy which gives examples of scam emails, together with some training will help. This also needs to be backed up with a disciplinary procedure which makes it very clear that breaches of your policy will be treated seriously. It is important all your staff appreciate the consequences of not paying attention or being too curious and accessing a scam email.

Article continues below...
Jordan Publishing Charities Administration Service

Jordan Publishing Charities Administration Service

The practical, reliable and easy-to-use guide on running your charity

Available in Lexis®Library
Jordan Publishing Company Administration and Governance

Jordan Publishing Company Administration and Governance

"This is an indispensable aid to the busy company secretary. The text is clear, the precedents...

Available in Lexis®Library

Equally important is that your staff also know that they have an obligations to protect your systems and the data held on them. Again it’s critical that your internet policy includes a section on this. In addition you should also aim to develop a culture in your organisation which embraces the principles of the Data Protection Act 1998 and the importance of maintaining confidentiality in respect of data.

Providing examples of breaches of confidentiality should also ensure staff understand the importance of complying with the polices and exercising caution when responding to email or telephone calls seeking information that would enable cybercrimes to take place.

If you haven’t reviewed your IT policies or systems lately then now is the time to do it. Otherwise it could be your reputation that’s on the line too if a breach goes viral.

Pam Loch, Managing Director of niche employment law practice, Loch Employment Law, HR Advise Me and Loch Training.

For more information on how to protect your business contact Pam Loch on 01892 773970 or email her at pam.loch@lochlaw.co.uk