6-1 Discussion: Cybersecurity Awareness and Training
One area most people in an organization don’t really think about but could be extremely helpful is the
timely application of system patches. I know some organizations will take time to do a companywide
update during down time to prevent any loss of production, but I know my current organization does not
use this approach for every single patch. There are minor patches that come through that I get notified
for by the Dell Command Update installed on my laptop to update. I ensure that these updates get taken
care of in a timely manner as patches can help mitigate security risks from previous versions. I actually
chose this topic because a lady I work with got the notifications to update and asked if she needed to go
ahead and update. For this topic, there does not need to be an elaborate training program put in place.
Utilizing company wide emails at least monthly to remind everyone to check for updates and the risks
that come with not utilizing patch updates would be sufficient enough. I feel as though this topic kind of
floats under the radar for most people outside of the IT field within an organization but can play a large
role to help mitigate risk and is a very easy task to complete.
