FEATURE: MANUFACTURING SECURITY
A STRONG EXAMPLE OF
PROACTIVE SECURITY
AWARENESS IS TO
CONDUCT REGULAR
WHITE HAT PHISHING
CAMPAIGNS, WHERE AN
ORGANISATION SENDS
OUT PHISHING EMAILS
TO EMPLOYEES THAT
ARE NOT MALICIOUS,
BUT SIMPLY USED
FOR EDUCATION
AND TO GAIN AN
UNDERSTANDING OF
THREAT LEVELS
www.intelligentcio.com
levels. This white hat phishing
technique captures important data
on who is likely to fall victim to an
attack, and why. does occur and organisations have to
respond. The incident response plan
should feature a few “must-haves,”
including:
It provides users with education
on how to recognise and identify
a malicious email, and what to
do about it. However, while this
is important, manufacturers must
also understand that they can’t rely
entirely on employees doing the right
thing – mistakes will happen and
links will inadvertently be clicked.
As employees get up to speed on
cyber security, an incident response
plan should also be in place.
This plan should be ongoing and
continuously tested, for maximum
effectiveness when an incident • Involvement from all levels within
an organisation, including the CEO,
CFO and more. This is not just a
project for the IT team. Involve the
right people, and ensure there’s a
point person who can lead during
an incident and make proper, fast
decisions when needed.
• A methodical approach on how to
respond to an incident. Each incident
is different in nature, but should
fall under a certain classification,
such as high, medium or low risk, so
individuals know how to proceed.
• The framework of each type of
INTELLIGENTCIO
45