Eight Ways to Communicate Security
Posted on Wed, Jun 15, 2011
By ASG's Professional Services Group
You can’t expect an organization to embrace new security measures with open arms. There are always going to be those people who don’t understand why things are the way they are. Why do we have these cards? Why do we have to swipe them at every the door? What is the point of these cameras? They are always watching us, I don’t like it?
I am sure you have heard of some of them and like many organizations I deal with you are trying to figure out a way to explain to people within the organization why security is the way it is and where it is going. Let me tell you the only way it is going to happen…communication.
And not just the communication where you send out some e-mails to people and let them know what is going. The reality: e-mail will simply go unread or land in the trash. Most people act as if Outlook is the Great Communication vehicle. You need to find a way to rise above this mentality. When I left a large organization years ago I averaged 190 e-mails a day. How many do you think I actually read?
Your e-mail isn’t going to work. Here are eight things you can do to rise above the chatter…
1. An intranet site or SharePoint site.
Both are great ways to privately inform those within your organization about people, processes and procedures. SharePoint has workflow built into it. Use it to get approvals from people and eliminate the paper that may be used in your current process. Remember, your website is a way to communicate with people, but the more you can incorporate workflow and motivate people to do things, the more the site will become a cultural hub for security.
2. Add a link where it counts.
Since e-mail is so engrained in all of us, add a link to the security website on the signature block. If anything they will see the link and maybe get information that they didn’t have before.
3. Brown Bag it.
These informative sessions are a great way to develop relationships with people in the organization and let them know what security is doing both today and, strategically, tomorrow. You can use webcams over video chat, but allowing those who want to be heard be heard is critical to success. It will allow the guy who just hates badges have his questions answered directly taking him from the water cooler to an interactive conversation.
4. SWAG (Something We All Get)
This concept constantly reminds me that people will do just about anything for to get something for free. For example, free lanyards with group names on them gets people involved. Squishy Balls, pencils, mints, lanyards and others are easy ways for people to enjoy gear that security provided. Your messages get out and people get something in return…bingo!
5. Engage at the starting point.
Brown Bags are great for current employees, but why not get involved from the beginning with employee orientation. It will amaze you what five minutes can do for your group and the reputation of security within the company.
6. Hire a communications expert.
Often the strategy of what your group is doing is lost once it needs to be communicated. Instead, a communications person can help spin the new changes, inform people and cut down on the rumors that people will spread from being uninformed.
7. Message where it counts.
Card readers are everywhere. What about adding some communication above the reader. Maybe something that could change with the key communication of the day. Or maybe it is simply your logo.
8. Do you have a brand and/or logo and a key phrase? Get one.
People should think security and then recognize your logo and key phrase. Security cannot be the hidden group that isn’t visible. That is the old model.
Communication is critical. Either you are informing people about security and where you are going or you still think keeping security secret works. The latter could not be further from the truth,. When you fail to communicate the right message to people, then people will carry their own message forward creating an ill-informed and in-efficient security culture.