Make Employees Your Top IT Security Asset
Change The Role Employees Play In IT Security
We have a great suite of Security Technology Solutions that are highly rated by Gartner and solve problems for our customers. In our view, having a comprehensive Security Technology Strategy and executing on that strategy are fundamentally critical success factors for enterprises. But while we spend a lot of time talking to Enterprise I.T. Management about Security, we also spend a lot of time listening to Enterprise I.T. Management about Security. It is through that listening that we found common themes across companies and across industries.
The most common theme across our customer landscape is that they are concerned that no matter what they spend on technology solutions for security, their most significant weakness in their risk profile is not technology-based. The most significant weakness in Enterprise Security is risky behavior by well-intentioned employees. That is borne out in the print of the Wall Street Journal as virtually any article written about security breaches cites the fact that it was a product of social engineering or just plain weak credentials. Nearly every major breach in 2015 has been caused by compromised employee credentials.
At the beginning of 2015, we at CMI decided that we needed to help our customers try to lower their risk profile as it related to their own employees. We found that there are many different companies that offer “Employee Security Awareness Training,” in fact Gartner recently published a Magic Quadrant on that space calling it a $1 Billion market that is growing rapidly. We also found that companies that invest in Employee Security Awareness Training improve their enterprise security risk profile significantly. However we did not want to be a ‘me-too’ company offering a slightly different flavor of the products that were widely available in the market.
We turned to our friends at Emerson Human Capital. Emerson has built a highly-successful business on Enterprise Change Management and has provided their services to many Fortune 100 companies. We met with the brains at Emerson and tried to answer the question: “Is it possible to not just make employees less of a weak link in Enterprise Security? Rather, is there a way to turn employees into Enterprise Security Assets?”
That initial conversation resulted in many follow-up conversations, planning sessions, internal workshops and white-board meetings. In the end, we came up with a program that is carefully designed around proven Enterprise Change Management Practices, rooted in today’s Enterprise Security dynamics and packaged for easy consumption by enterprises.
Our unique design and our demonstrated positive results with customers have given us tremendous optimism that we can help companies of all sizes. We really are able to transform your employees from your biggest security weakness to your top security assets. We would welcome the opportunity to talk to you about how we approach this problem and deliver a unique value proposition. Contact CMI for a security consultation.
Chief Technology Officer