Skip to content

October Is Cybersecurity Awareness Month – It’s a Good Time to Update Your Training Program

October 10, 2023

This month is the 20th annual Cybersecurity Awareness Month, cosponsored by the Cybersecurity and Infrastructure Agency (CISA) and the National Cybersecurity Alliance. This year’s theme is “Secure Our World.”

Cybersecurity awareness by all users is a critical part of effective cyber defense. CISA has reported that 90% of successful cyber attacks start with a phishing email. Verizon has reported that about 74% of breaches involve a human element, which includes social engineering, errors, and misuse. Users can make a big difference!

Every user from the newest hire to senior management has a role in effective cybersecurity. Training is critical. The goal should be to promote constant security awareness, by every user, every day, every time they’re using technology. Users should know how to securely use technology; be aware of current threats and how to protect against them; know what to do if there’s an incident; and understand how to get answers to questions. Training tips should include:

  1. Stay focused and avoid multitasking and distractions.
  2. Learn how to recognize phishing.
  3. Think before you click or act.
  4. Report suspected phishing.
  5. If you receive a prompt for multi-factor authentication (MFA) and aren’t logging in, report it.

This Cybersecurity Awareness Month is a good time to update your training program (or to implement a program if you don’t have one). Use this month to provide a refresher to users, followed by periodic repetition.

If you have questions about the content of this alert, please contact David Ries (dries@clarkhill.com;  412.394.7787), Melissa Ventrone (mventrone@clarkhill.com,  312.360.2506) or another member of Clark Hill’s Cybersecurity, Data Protection, and Privacy Group.

This publication is intended for general informational purposes only and does not constitute legal advice or a solicitation to provide legal services. The information in this publication is not intended to create, and receipt of it does not constitute, a lawyer-client relationship. Readers should not act upon this information without seeking professional legal counsel. The views and opinions expressed herein represent those of the individual author only and are not necessarily the views of Clark Hill PLC. Although we attempt to ensure that postings on our website are complete, accurate, and up to date, we assume no responsibility for their completeness, accuracy, or timeliness.

Subscribe for the latest

Subscribe

Related

Event

Webinar: Special Education Bootcamp - Compliance Foundations Under IDEA

Whether you are new to special education leadership or looking to reinforce your foundational knowledge, this interactive webinar will provide a comprehensive overview of the core compliance requirements under the Individuals with Disabilities Education Act (IDEA). Designed for school leaders who are responsible for ensuring legally sound practices, this session will offer practical tools and strategies to help participants navigate common procedural and substantive pitfalls, support sound decision-making, and build a compliant and student-centered special education program.

Explore more
Event

Telehealth Week Webinar 2025: Navigating Legal Changes and Future Trends for Healthcare Providers

Join Paul Schmeltzer, Carrie Foote, and John Howard for our one-hour annual Telehealth Week webinar, focused on the evolving legal landscape of telehealth. This session will cover key topics, including the upcoming DEA final rule on prescribing controlled substances via telehealth, federal reimbursement concerns for telehealth, and what healthcare providers need to prepare for other upcoming changes.

Explore more
Event

Webinar: The Transatlantic Tightrope: AI, ESG and the Evolving Duty of Care for Multinational Companies

Join Mariah Leffingwell and Sam Saarsteiner for a conversation, moderated by co-chair of Clark Hill’s ESG & Sustainability advisory practice, Maram Salaheldin,  that bridges the Atlantic—and the gap between innovation and accountability—as they explore how today’s duty of care must adapt to tomorrow’s technologies.

Explore more