Food manufacturer Unilever is tackling the human element of information security by introducing a global awareness...
programme across the organisation.
The company has recognised that most data breaches are not caused by technology failure, but by the lack of secure behaviour by employees with access to company data.
More than 140,000 IT users across the business in 150 countries will be required to complete a 20-minute security briefing and test in the coming months.
The second-life styled interactive online programme contains guidelines on how best to protect information in a variety of different business situations.
The "teach and test" programme, which is customised according to each employee's role, has been introduced as part of the company's information security communication initiative.
Andrew Strong, global security director at Unilever, said, "The initiative is aimed at changing the perception of security and ensuring each employee understands what is good behaviour for keeping information safe."
The "teach and test" programme is available through a security portal, which the company plans to use to update employees on changing security risks, procedures and policies.
"We can easily communicate key contemporary issues such as how to deal with laptop security checks at airports," said Strong.
Unilever plans to conduct regular internal and external surveys to measure behavioural change and assess whether key risks are being addressed and adapt security training accordingly.