How to Build a Security Culture in Your Organization

August 21, 2020

Krizi Trivisani, former CIO of the American Red Cross

It’s critical that your organization protects customers’ data, as it helps you retain their trust as well as their business.

To help safeguard it, you’ll need to implement a strong security culture—or the attitudes and actions of employees pertaining to your organization’s security. Once employees are educated on security and on-board with taking measures that keep your data secure, your organization will be less at risk of data breaches.

In this installment of the CIO Newsletter, Mark Settle (author and 7x CIO) and Krizi Trivisani (former CISO for the American Red Cross) further explain the importance of establishing a strong security culture, and offer tips for building one.

Key Takeaways

  • You need to make sure that your security policies and attitudes support your data-protection mission. 
  • Communicate in a way that establishes urgency. 
  • Unlikely alliances can help you build a security culture.  
  • If you see something, say something. Fostering a security culture means being proactive and taking decisive action.
  • Personalize your message so that it better resonates with employees and motivates them to take action.

“Complacency is failure.”

Want more tips and best practices from CIOs? Subscribe to our CIO Newsletter.