Cyber-preparedness: Try the Five Minute Micro-Exercise

Cyber-preparedness: Try the Five Minute Micro-Exercise

Cybersecurity continues to be an evolving threat to the public and to our nation.

Micro-exercising is a concept in physical fitness where people engage in a short, targeted workout or slightly increase the intensity of a normal activity in whatever location or during whatever time they have available – think taking the stairs versus the elevator, or working while standing up instead of sitting at your desk. In the same vein, we can apply a similar approach to cyber-preparedness, as we recognize the number of vulnerabilities created through users’ behavior, activities, or other human errors.

Protecting networks and critical infrastructure from malicious attacks, equipment failure, human errors, and honest mistakes involves applying overlapping security controls in the context of strategies that may be opaque or seem incredibly complex to an authorized system user. When that happens, people may become less conscious of their activities as they are either overwhelmed with information or they think, “Someone else is taking care of this.” While that is often true and even as cybersecurity techniques evolve with proactive technologies to remove vulnerabilities or stem an attack before it happens, we still find that we often react to cyber incidents after the fact.

Enter the micro-exercise. Cybersecurity exercises that receive the most publicity are national in scale and have a broad scope intended to test, validate, or identify weaknesses in large-scale cybersecurity strategy. Beyond that, I often wonder how many system users actually get to participate in any cyber-exercise. I suspect it is not very many and, therefore, people may not have had the opportunity to reflect or understand cybersecurity best practices or response methods.

Managers have an opportunity, and potentially a responsibility to their organization, to provide that opportunity by starting with a simple question: “What would you do if you receive an email with an attachment from someone you don’t know?”  Or, “You see an antivirus alert on your computer, so you…?”  Or, “You are unexpectedly prompted to enter your user ID and password. Should you do that? Should you report it?”

It does not take a full-scale exercise to keep a network healthy. 

Ask the question in a staff meeting and have a five-minute conversation about what should happen next. If people don’t know the answer, rather than being “wrong”, it may mean that there is an opportunity to direct them to an authoritative source, to some awareness materials, or that there is a gap in policy, procedure, or awareness that can be addressed with the IT organization. When this is the case, they will be glad you asked.

Blog Cybersecurity

Contributors

* Arc Aspicio |

Arc Aspicio is a management, strategy, and technology consulting firm that takes a mission-oriented approach to complex client challenges. As a rapidly growing company, Arc Aspicio has a bold strategy for 2016-2018 that drives growth through new capabilities in strategy, design, human capital, data analytics, information sharing, cybersecurity, and strategic communications. The company is known for a strong, collaborative culture that values gratitude – for its clients and its great team. And, #welovedogs! Follow us on Twitter @arcaspicio or learn more at www.arcaspicio.com.

Lynn Ann Casey / Chief Executive Officer
info@arcaspicio.com
703.465.2060

Towards Preparedness and an Emergency Management Workforce of the Future

Towards Preparedness and an Emergency Management Workforce of the Future

Grit and determination. This is what the Federal Emergency Management Agency (FEMA) workforce is known for. After what is arguably the most challenging year in its history, the FEMA leadership called on the agency to enable the workforce through four elements: build, empower, sustain, and train. A key factor in creating a scalable, sustainable disaster response workforce is to foster a proactive culture, one focused on preparedness. A proactive mindset can create an environment that asks the “what if” questions that lead to more prepared response efforts.

Achieving Strategy Breakthroughs by Enabling the Operational Workforce

Achieving Strategy Breakthroughs by Enabling the Operational Workforce

Are you developing a strategy but are unsure where to start, what to rely on, and who to engage when driving a business, organization, or agency forward? Start by enabling the operational workforce. The workforce includes those who are executing daily tasks and operations of the many programs within an organization. Enabling the workforce gives them authority, allowing them to access their full potential to achieve desired results, and helps the Government develop, communicate, and implement strategy.

Greater Washington Innovation Awards Selects Arc Aspicio as Nominee in Professional Services Category

Greater Washington Innovation Awards Selects Arc Aspicio as Nominee in Professional Services Category

Arlington VA, March 14, 2018 — The Greater Washington Innovation Awards chose Arc Aspicio to participate in their showcase as a nominee for the Professional Services Innovator of the Year Award. This prestigious event gave Arc Aspicio employees the opportunity to present their innovative methods for solving the Federal Government’s most complex challenges.

Arc Aspicio Named 2018 Washington D.C. Corporate Culture Winner

Arc Aspicio Named 2018 Washington D.C. Corporate Culture Winner

Arlington, VA, February 19, 2018 — CEO Report chose Arc Aspicio as a Washington D.C. Corporate Culture Award Winner for 2018. An independent committee grants the award to companies that focus on empowering employees and fostering a work environment that is both creative and collaborative. Winners of the Corporate Culture Awards are leaders in using company culture as an asset for growth.

Lean Strategies: Workforce Engagement and Retention in the Federal Government

Lean Strategies: Workforce Engagement and Retention in the Federal Government

Across the Federal government, agencies and programs have been tasked with building, training, and retaining the workforce needed to serve the American people. Public-sector leaders have been struggling with the right approach to this challenge, but we are now seeing more and more agencies turn to implementing private industry ’lean’ methods as a potential solution. Lean strategies aim to identify and improve an organization’s pain-points by following a set of principles and techniques focused on minimizing risk, optimizing cost and quality of processes, and engaging employees to deliver value-added benefits and improvements aligned to the organization’s mission and goals.

Architecting the Arc Aspicio Employee Experience

Architecting the Arc Aspicio Employee Experience

Human Resources (HR). What comes to mind when you hear “HR”? Hopefully, it’s positive! While most people would answer with “processing paperwork, administering benefits, onboarding and paying employees, etc.,” HR in 2018 is so much more. As the Association for Talent Development argues, HR is about being an “experience architect.” It can transform the employee experience.

Building Data Analytics Capacity in Your Organization: Centralize or Decentralize?

Building Data Analytics Capacity in Your Organization: Centralize or Decentralize?

As threats evolve and technology reinvents how we perform work, the Government must continue to find solutions to increasingly complex and multifaceted problems. Thanks to the expanded availability and relevance of data, agencies are now equipped with more resources to make accurate fact-based decisions surrounding these complex issues. As agencies make increasing use of this data, they need to determine whether to implement a centralized or decentralized analytical structure.

Making a Difference

Making a Difference

We’ve all been there, a moment in a past job where you ask yourself if your work really matters. You are approaching mid-career and what matters more to you now is seeing your work make a difference. I knew that I wanted to spend more time “doing” homeland security, rather than writing policy memos about what other people were doing. With this mindset, I walked into my interview with Arc Aspicio four years ago. My question for my interviewer—how do your people make a difference every day?

Arc Aspicio Launches “Our Story” and Launches Updated Website

Arc Aspicio Launches “Our Story” and Launches Updated Website

Washington, DC, February 12, 2018 —Arc Aspicio published a blog series and updated its website to focus on the story and history of the company. “Our Story” starts from the beginning and shows key accomplishments and milestones along the way.

Lynn Ann Casey founded Arc Aspicio with a small team of people that wanted to influence and shape the Homeland Security consulting industry for the benefit of the Federal Government and the people it serves – the American public. As the company has grown, it has remained focused on the its core values; to put the mission first, build trust with one another, be innovative, solve difficult problems, and invest in its people.

Learning by Doing: Discovering DC through an Arc Aspicio Internship

Learning by Doing: Discovering DC through an Arc Aspicio Internship

I chose to attend college in Washington, D.C. because as an eager, politically-motivated young woman, I couldn’t imagine a city with better opportunities. Now entering my final semester at the George Washington University (GWU), I realize that even my highest hopes for a life in D.C. couldn’t compare to what I found once I got here. With nearly every government agency headquartered within metro distance, there is an internship for every calling.

Letting Employees Dive In

Letting Employees Dive In

What do you want to be when you grow up? The truth of the matter is, I’ve never wanted to answer that question. I’ve never been someone who felt tied to one particular activity or career path (and I have a disgruntled high school guidance counselor who can vouch for that). What I did know coming out of college were two things: I wanted to solve problems facing our country and I wanted to continue learning.