Article
The threat is higher than ever: phishing emails, ransomware, virus programs, and software vulnerabilities are causing ever greater damage. For the year 2022 alone, a Bitkom study calculated a sum of 202.7 billion euros for Germany caused by IT attacks. The market research institute Gartner predicts that by 2025, almost half of the world’s companies will experience attacks on their supply chains. After all, anyone can be affected, from online shoppers to government agencies to companies of all sizes and industries. IT security should therefore be a key issue for every organization. What to do?
In addition to technical measures such as firewalls and protection programs, the most important thing is to take a view that encompasses the entire company: Organization, processes, employees and their applications. “In fact, 80 percent of the measures are organizational and only 20 percent are technical. It is crucial to train employees regularly on IT security topics and to create the necessary awareness,” says Stefan Cicigoi, Managing Director and Partner of the IT service provider Scheuss & Partner AG. After all, the easiest gateway for cyber attacks is the employees themselves, be it via phishing, spoofing, social engineering or similar.
With modern learning management systems (LMS) such as LMS365, IT security training can be offered at regular intervals or on the basis of current threats without great effort and integrated into everyday work and training. Via the LMS, those responsible have an overview of participants and their learning progress at all times. In addition, platforms , such as webinars or topic chats, can be made available for direct exchange when employees have questions about security topics in their daily work. High security standards should also be taken into account when selecting the learning management system that is regularly used by employees in their day-to-day work.
An internationally recognized standard for the development, implementation, maintenance, and continuous improvement of an information security management system (ISMS) is described by the ISO 27001 standard. LMS365 has been certified to this standard since 2021 and additionally to ISO 27701 since 2022. This newly published and expanded standard includes, among other things, additional guidance for compliance with the European Union’s General Data Protection Regulation (GDPR) and guidelines on how to manage and protect personally identifiable information .
“No one wants their private data to fall into the wrong hands. The updated certification shows that using LMS365 with Microsoft is extremely secure,” says Flemming Blåbjerg, Head of Digital Transformation & Compliance at LMS365. LMS365 meets the highest level of security and compliance required by Microsoft and is also supported by Veracode Verified Continuous Application Security, which certifies that the systems are free of data vulnerabilities.
If you want to get a quick overview of where your own company stands in terms of IT security, you can contact IT security service providers and industry associations. Scheuss & Partner, for example, offers an all-encompassing security audit and consulting service at Security360
Article
The threat is higher than ever: phishing emails, ransomware, virus programs, and software vulnerabilities are causing ever greater damage. For the year 2022 alone, a Bitkom study calculated a sum of 202.7 billion euros for Germany caused by IT attacks. The market research institute Gartner predicts that by 2025, almost half of the world’s companies will experience attacks on their supply chains. After all, anyone can be affected, from online shoppers to government agencies to companies of all sizes and industries. IT security should therefore be a key issue for every organization. What to do?
In addition to technical measures such as firewalls and protection programs, the most important thing is to take a view that encompasses the entire company: Organization, processes, employees and their applications. “In fact, 80 percent of the measures are organizational and only 20 percent are technical. It is crucial to train employees regularly on IT security topics and to create the necessary awareness,” says Stefan Cicigoi, Managing Director and Partner of the IT service provider Scheuss & Partner AG. After all, the easiest gateway for cyber attacks is the employees themselves, be it via phishing, spoofing, social engineering or similar.
With modern learning management systems (LMS) such as LMS365, IT security training can be offered at regular intervals or on the basis of current threats without great effort and integrated into everyday work and training. Via the LMS, those responsible have an overview of participants and their learning progress at all times. In addition, platforms , such as webinars or topic chats, can be made available for direct exchange when employees have questions about security topics in their daily work. High security standards should also be taken into account when selecting the learning management system that is regularly used by employees in their day-to-day work.
An internationally recognized standard for the development, implementation, maintenance, and continuous improvement of an information security management system (ISMS) is described by the ISO 27001 standard. LMS365 has been certified to this standard since 2021 and additionally to ISO 27701 since 2022. This newly published and expanded standard includes, among other things, additional guidance for compliance with the European Union’s General Data Protection Regulation (GDPR) and guidelines on how to manage and protect personally identifiable information .
“No one wants their private data to fall into the wrong hands. The updated certification shows that using LMS365 with Microsoft is extremely secure,” says Flemming Blåbjerg, Head of Digital Transformation & Compliance at LMS365. LMS365 meets the highest level of security and compliance required by Microsoft and is also supported by Veracode Verified Continuous Application Security, which certifies that the systems are free of data vulnerabilities.
If you want to get a quick overview of where your own company stands in terms of IT security, you can contact IT security service providers and industry associations. Scheuss & Partner, for example, offers an all-encompassing security audit and consulting service at Security360
