昨天有近7个小时 billions of people could not access their Facebook, Instagram, and WhatsApp applications. 这种规模的全球停电是前所未有的, and it highlights the vulnerability of our digital networks and security systems. The official statement from Facebook is that a “faulty configuration change” sparked the outage — but some are also 推测是内部人员蓄意破坏.
While the inability to access these social media tools was an inconvenience for Facebook users, the question remains: Are organizations prepared to ensure the safety of their employees and visitors at their locations when these security breaches occur?
Yesterday's shutdown is a good reminder to remain vigilant and ensure you conduct regular physical and technical 安全评估s. It's also a reminder to review your company’s security policies and procedures to provide a safe work environment for your employees, 嘉宾及访客.
Return to the Office Combined with Increased Cyber 事件 is an Ideal Time to Re-examine Security Operations at All Corporate 位置
A 安全评估 can tell you how to protect employees and visitors best. Security experts conduct several types of these assessments, such as:
- 物理和技术安全评估
- Crime Prevention Through 环境 Design (CPTED) Assessments
- 物理穿透测试
- Security operations assessments, including effectiveness of guard services
Assessors may visit during the workday to see the flow of employees, visitors and guest as well as to better understand the culture of the organization. 另外, night and weekends are an option depending on the situation which reduces the time from assessment planning to execution and eliminates the risk of interrupting regular operations. 不管是什么时候, conducting assessments gives the security consultants time to determine system effectiveness and identify gaps in baseline levels of protection and system coverage during normal working conditions and when situations arise.
更新安全策略和程序
Company leaders should look to their security consultants to review and implement existing policies and procedures and evaluate their effectiveness to ensure best practices are being implemented based on their industry and culture. This goes hand-in-hand with onsite 安全评估s and provides an opportunity for discussion with company leaders on what is working and areas of growth, 尤其是当员工们回到办公室的时候.
When thinking about your security policies and procedures, 考虑你是否有适当的协议:
- 访问控制和密钥发布
- 入侵检测
- Video surveillance, including your system’s remote monitoring capabilities
- Heating, ventilation and air conditioning (HVAC) and emergency shutdowns
- 安全系统的测试和维护
在最需要的时候制定弹性计划
Resiliency planning probably was not top-of-mind at the beginning of 2020. No one expected the COVID-19 pandemic or the Facebook outage and now companies are either enacting or developing plans that will ensure 业务连续性 以及紧急情况下员工的安全.
Now is the best time to look at resiliency planning to improve or learn from current actions and prepare for the future and different types of circumstances, like the impact of a cyber event on physical and security operations. As companies prepare to welcome employees back to the office environment, working with your security consultants to determine your organization's specific risks, 威胁和漏洞至关重要. It will provide you with the foundation to accurately develop recovery plans and implement action plans to minimize impact on your employees and business operations.
除了…之外 应急响应计划, 这是一个回顾你的工作的好时机。
- 业务和供应链连续性计划
- 企业传播计划
- 危机管理计划
- 居住者应急计划
By engaging a security consultant now in performing these assessments will provide employers with a road map of what's needed to be done to ensure a safe and secure operating environment for employees once they begin returning to work but also if a security event occurs impacting their team.
请随意 彩宝网 有问题吗?.
