graphic for The 2019 Index of Intelligent Technology in HR Tech

 

Security Series 8 – Getting Started

On February 14, 2019, in HRExaminer, by John Sumser

 

2019-01-28-hrexaminer-photo-img-security-series-8-part-john-sumser-cc0-via-pexels-by-pixabay-cyber-security-cybersecurity-device-60504-edit-544x300px.jpg

“The coming years will feature an enhanced role for HR in the management of critical information assets, education about employee tech utilization, and effective communication of employee level security programs.” – John Sumser

Security Series 8 – Getting Started

 
There are no current case studies that demonstrate the operation of an initiative that blends the management of Security and Organizational Health. However, the regulatory and technical climates are shifting in ways that suggest that such an effort is imperative. The coming years will feature an enhanced role for HR in the management of critical information assets, education about employee tech utilization, and effective communication of employee level security programs.

This means that the establishment of an HR based Security CoE is pioneering work. The design and execution of the project will vary between companies. The focus of security initiatives is highly dependent on industry, location, ecosystem sophistication, and the quality of current employee attachment to the company.

Step 1. Data Collection and Categorization
There are three primary sets of data to collect and understand: Ongoing Measurement and Analysis of Employee Sentiment, Current Security Plans and Programs, and an Inventory of Data that must be kept secure. Acquiring and understanding the company’s information assets is the foundation of an HR based security thrust. This data is the foundation of a project library.

Step 2. Feasibility Analysis
With a clear grasp of the contents of the project library, the core team must develop an approach to tying workforce commitment to security outcomes. The initial feasibility analysis will include a plan to involve the highest levels of the organization.

Step 3. Project Scheduling
The first year of the project will involve establishing a regular cadence of information delivery, results management, and content creation. Depending on funding level, the CoE should deliver quarterly training and monthly reporting of the relationship between ongoing organizational work and security issues.

Step 4. Kickoff
Project momentum is always established in early finding and the fanfare associated with the launch. This is the point at which project sponsors and high level executives begin to really exercise their input to the project.

Step 5. Ongoing Strategy Development
The key to long-range success of the CoE is an ongoing initiative to try to see the things that are not obvious. Quarterly meets that integrate executive and working level perspectives will make it possible to discover the leverage that makes Security and integral part of the company’s culture.

Bottom Line
Establishing an HR-Security Center of Excellence is a 21st Century initiative. By asserting the relationship between the workforce’s aggregate attachment to the company and reductions in security problems, HR can start to fully demonstrate its commitment to the bottom line.

==========

The Security Series: HR as Security Leader

1: Overview – Why Focus Your HR Department on Security? Link »
2: Introduction Link »
3: Context – Shifting Technology Link »
4: Context – Increasing Employee Power Link »
5: The Ecosystem of Security Issues Link »
6: The Future of Security Issues Link »
7: The HR Security Center of Excellence Link »
8: Getting Started Link »
 

graphic for The 2019 Index of Intelligent Technology in HR


 
Read previous post:
HRExaminer Radio Executive Conversations Badge Podcast Logo
HRExaminer Radio – Executive Conversations: Episode #313: Beth White

John Sumser speaks with Beth White, Founder and Chief Bot at MeBeBot, an AI chatbot for HR. Beth has over...

Close