Mistake 7: Lack of communication
In small organizations, one or two people may run the entire IT operation. In those cases, communication is rarely a problem. However, in large organizations, responsibilities can be spread throughout the company. There may be multiple people with the same job description who work in different departments or offices. And that’s when trouble can occur.
Everyone needs to be on the same page, especially as it relates to their IT security posture. Regular communication between different parts of the organization is critical to help prevent mistakes and lapses that could lead to a breach.
An example: A large part of the office is experiencing a lack of network ports. An employee decides to bring in a wireless router from home and allows other employees in the area to use it. Problem solved, right? Nope. Without involving the right IT security personnel, they may not have the wireless router secured well enough (or at all). Someone sitting the parking lot can break into the wireless router and get access to the keys to your IT kingdom.
Takeaway: make sure everything is going through proper channels, and that all members of the IT staff, regardless of department, are in communication with each other.
Dennis Webb, IT Security lead for CAS Severn, will discuss this in more detail at our webinar, Top 10 Security Mistakes (And How to Fix Them) next weekon July 22.