3 Reasons Why Employee Security Training is So Important
Thieves will take advantage of every opportunity available to them, and your employees are an important line of defense against them.
Do you have a security policy? Do your employees know about it? One way your employees can help try to protect against these activities is to be trained to follow your procedures. If they don’t know what to watch for, or what to protect, or how, then how can they help you?
Here are 3 reasons why it is so important to have a security process and make sure your employees know it well.
- Card-reading devices at point of sale locations may be used to steal cardholder data. Devices are stolen or exchanged, or tampered with to get cardholder data. Thieves may try to impersonate device maintenance personnel to try switching devices, or they may even try adding another device on top of yours. Without proper training, employees may not recognize when this happens or what to do to try to prevent it.
- While a Customer Service Representative helps a customer with an order and payment entry, sensitive data is written to the Customer Service Rep’s desktop. Without training, the Customer Service Rep doesn’t know that this is against PCI-DSS requirements.
- While checking email, a purchasing agent clicked a link for a great offer with a vendor he thought he knew, and used the company’s account information. Without proper training, the agent didn’t know to go to the website manually and check the creditability of the offer.
There are many more reasons to have a security process and train your employees on it, and the PCI Security Standards website is a good place to start for more information. For details about InOrder’s PA-DSS-validated ERP software, contact Morse Data Corporation.
1 Comment