Communication Channels - CyberLadder.io

A quality cybersecurity program is not solely about the technical controls implemented. For your program to be truly effective, you need to ensure good communication between your entire staff regarding all levels of cybersecurity needs. This is especially important in situations where new technologies are implemented, and the entire workplace needs to be informed. It is also critical in incident response scenarios where multiple roles need to come together to quickly contain and eliminate a threat.

To ensure that your organization does not fall behind in communication while you implement a cybersecurity program, make sure to identify proper communication channels at the onset. Defining these channels and making your workplace aware of them will help keep cybersecurity projects from decaying into chaos.

If your organization uses a cloud platform like Google Workspace or Microsoft 365, you could build a Chat specifically dedicated to cybersecurity information. This could be done via Google Chat or Microsoft Teams. The Chat should include all parties that should be kept in the loop regarding cybersecurity developments. If you want, you could also create multiple chats to further organize communications. One chat could be for cybersecurity managerial matters, another for basic tech support, and another for threat information sharing.

Video conferencing tools are a staple of modern work environments and can be great for communication if your business involves multiple parties that are often geographically separated. Zoom, Teams, and Google Meets are video conferencing tools commonplace today. Chances are, you are already considering using video conferencing tools to hold meetings of your cybersecurity team. If you identify a need to contact other employees regarding cybersecurity and/or tech support matters regularly, you could schedule a biweekly or monthly meeting with all employees to share and discuss cybersecurity matters.

For more immediate matters that need to be communicated organization-wide, you should create an email group that includes all employees and stakeholders. Whenever a cybersecurity incident or news development of interest arises, a formal email should be sent to the group containing an overview.