Tag Archives: Chief Administrative Officer

Cyber threats and how to protect your municipality

Brad Pinch – Director of Municipal Needs at AccessE11

 

Often, when we hear about securing online systems against cyber-attacks the first thought is to invest time and energy into cybersecurity software. While this is important, and should not be downplayed, did you know that software alone will only defend against a small percentage of cyber-attacks?

Hacker Image

 

The easiest way for someone to breach your security infrastructure is to employ the unsuspecting assistance of your users.

According to PhishMe’s 2017 Enterprise Phishing Resiliency and Defense Report, 91% of all cyber-attacks are a result of people who fall prey to Phishing Attacks. Of the remaining 9% of cyber-attacks, more than 75% are the result of other forms of “human failure” to secure information.

Phishing is an attack that begins with a very targeted email sent to your staff (and perhaps yourself), that often impersonates a service provider, colleague, family member or friend and entices you to click on a link or open a document. This action may include a request for private information that provides the perpetrator with the means to launch a secondary cyber-attack or it may launch an attack directly through the download of malicious software. Attacks can be in the form of spyware, malware, and increasingly ransomware and data theft.

Wombats Security’s – State of the Phish 2018 report– suggests that phishing attack frequency from 2016 to 2017 increased by 48%; phishing is on the rise because it continues to work. Hackers have quickly learned that it requires less energy to trick users into giving them access than it does to circumnavigate the sophisticated security systems deployed today.

6 simple steps that a municipality can do to protect themselves

Here are a few steps a municipality can take to minimize its chances of security breaches and cyber attacks.

  1. Stay Informed and educate your team

Much of the battle against phishing and spear phishing (personalized phishing) attacks is getting users to understanding what this type of attack looks like, so they are less likely to be duped. Phishing relies on basic human conditions:

  1. information overload and shortcuts our brains take to process the information,
  2. a desire to help those we care for and trust of information that (seems to) come from them,
  3. curiosity for new information.

These traits are well known to attackers and are exploited in order to get victims to click on a link or open a document. Emails look like they’re from legitimate sources: Microsoft 365, Google, Dropbox, PayPal, Adobe account, LinkedIn, credit card company and many more.

There is a great infographic called don’t get hooked: how to recognize and avoid phishing attacks from the Digital Guardian. Print it out and post it for all to see.

  1. Keep your software up to date

Malware is being created all the time and is designed to take advantage of newly discovered vulnerabilities in our general use software. Vendors are quick to update their software, but you must update your version in order to be secure. You should regularly, or ideally automatically, update your software:

  1. Browsers (Chrome, Safari, Firefox, etc)
  2. Operating Systems (Windows, MacOS)
  3. Office Software (Outlook, Word, Adobe)
  1. Call before you click

Any email from a bank or colleague can usually be responded to directly, rather than via a reply or by clicking on a link. If there is ever any doubt, call your bank on the phone (using published numbers, not one in the email), or log directly into their website directly – not from the link in the email. By not taking the shortcut, fraudulent links can be avoided.

  1. Install anti-virus software and activate the Anti-Phishing toolbar if available

Antivirus software is designed to guard against known vulnerabilities. Even though today’s operating systems are more secure than ever, security tools look for malicious content in real time and provide an extra layer of scrutiny. And make sure you keep it updated as well.

Internet browsers can also be extended with anti-phishing toolbars. Such toolbars run quick checks on any site you visit and compare it a to lists of known phishing sites. If you stumble upon a malicious site, the toolbar will alert you about it. This is just one more layer of protection against phishing scams, and there are many that are completely free.

  1. Implement Secure Password Policies

As hard as it is to believe, the 10 most common passwords in 2017 were:

  • 123456, 123456789, qwerty, 12345678, 111111, 1234567890, 1234567, password123, 123123, 987654321

It won’t take a hacker long to break these codes.

Equally important though – do not use the same password for everything: If you do, and someone gets access to one system, they can often get access to them all. If you struggle to remember passwords (who doesn’t) there are many excellent tools that can assist:

These programs store an encrypted version of your passwords on your computer and conveniently provide them when you need them. This means remembering only one password.

  1. Beware the Unknown Storage Devices

It is possible the free USB drive that is received from a tradeshow, or the one you found in the parking lot has a virus on it. Sites that sell marketing USB drives unwittingly provide ones that have viruses installed from the source in China, Russia, India, Korea and other countries (yes including the UK, US, and Canada). These were likely never checked by the company who put their information on the drive to give to you.

If a data storage device is not bought by your company or municipality from a reputable source then it should not be allowed on one of your computers, ever!

These are only a few ideas to help better protect your organization from cyber-attacks. The common element in each remains the same; people and their behavior represent the greatest risk but also provide the best defense against cyber-attacks. Any user can open the door to intruders, so ensuring everyone understands the risk and remains vigilant is critical. Investment in the human factor will pay off quickly and be more cost-effective than any other action.

For More Interesting Articles on Issues that Municipalities are facing please visit us at https://www.accesse11.com

Share

Effective Facilitation Public Workshop

The Effective Facilitation program builds a strong foundation of knowledge in both practice and theory for facilitation success. Knowing the techniques to use and how to effectively facilitate in different situations – meetings, presentations and training sessions – in today’s environment is critical. With its focus on asking rather than telling, and listening to build consensus, facilitation is the new leadership ideal, the core competency everybody needs.

During this 1-day program, you will gain an understanding of the full cycle of facilitation. It will provide you with the resources, materials, and tools that can be used to confidently and effectively facilitate in any situation. You will also get the opportunity to practice what you’ve learned in a safe and supportive environment.

Through a mix of theory and practice, participants will learn how to:

  • Create a positive climate that engages and involves your learners
  • Deal with the unexpected – unanticipated problems and challenging participant situations
  • Evaluate the results of your training; learner feedback is valuable in more ways than one.

This program is designed to reinforce and develop your skills as a facilitator. Each participant will have the opportunity to facilitate a brief session on the second day of the program. This will allow the facilitator and training participants to offer insightful and real-time constructive feedback.

Please note that this workshop is a 1-Day condensed version.

For more information, please click here

To Register, please click here

Share

Design Thinking Public Workshop

In an environment in which customer experience is increasingly becoming a differentiator, the thoughtful design of individual customer experiences, and of how multiple touchpoints work together as a whole, is too vital to be left to chance. Ultimately, Design Thinking jumpstarts an organizations’ creativity and transports them beyond the “go-to” options, unlocking new opportunities for creating shared value.

Design Thinking is an innovative, problem solving mindset for human-centered innovation and product / service development. It uses ethnography to intimately understand customers and agile development and iteration to translate findings, to insights to visualization.

During this 1-Day Design Thinking workshop, participants will learn about the Design Thinking framework. The CSPN Design Thinking framework is a codified structure to repeatedly and reliably lead teams from business strategy to customer insights and from customer insights to ideas. Through interactive activities and case studies, participants will learn practically how to contextualize methodologies, tools and processes to deliver insights that lead to customer value solutions.

As an action-oriented and practice session, this Design Thinking workshop guides participants through solution development regardless of the customer or business challenge at hand. Participants will learn how to put the framework into action!

For more information, please click here 

To Register, please click here 

 

 

Share

How Your Online Presence Could Be Hurting Your Job Search

You don’t get a second chance to make a first impression. And, in this day and age, it is very often your online presence that will make that first impression for you. If you’re currently in the market for a new job, it is very likely that potential employers are checking you out online before even considering you for an interview. The strength, or weaknesses, of your online presence, can make or break you. Don’t let them keep you from getting the job that you want!

job search

Even though you are applying for a professional position, your personal social media will still be under scrutiny. Now might be a good time to review the persona that you are presenting, as well as your privacy settings. Even the tightest profiles can be subject to security glitches, so you need to assume that everyone can see EVERYTHING that you post, like, share or comment. We have all heard stories about people losing their job over an inappropriate tweet or an off-colour Facebook photo, not to mention scathing posts about a former employer. Don’t sabotage yourself before you even get started.

 

When tending to your professional online presence, consistency is key. Make sure your name is the same on all your profiles, including your Candidate profile on muniJOBS, by avoiding nicknames, etc. It will make it easier for employers to search you out. Make sure you are sending the same message on each of your profiles. If your muniSERV profile presents you as a well-qualified consultant, your LinkedIn profile should do the same. Ensure that all profiles are fully up-to-date with any new skills, training courses, or achievements. This might also be the time to call in some help from a pro. A dynamic biography with a summary of your strengths and experience can go a long way, especially when written from an outsider’s point of view. Consider it an extension of your CV or cover letter and outsource it to a professional for best results.

 

Some experts predict that online presence will make the resume obsolete in the next 5-10 years. In an already competitive market, this will only lead to an even larger talent pool being available with full information readily available. This is even more reason to make sure that your personal and professional profiles are in line with the image that you want to project. Increase your chances of being found by municipal decision-makers with a CAO or Consultant profile on muniSERV and/or with a Candidate’s profile on muniJOBS. Contact us for more information and get started today.

Share

2-Day Strategic Change Management for CX Public Workshop

As organizations continue to move forward and learn to survive and thrive in an ever-increasing competitive market, the on-going battle of strategizing methods to create new and exceptional customer experiences (CX) continues. To successfully deliver CX experiences that make tangible differences, organizations must change what is being done today in order to deliver on what needs to be done in the future. This requires organizations to fundamentally change their standard approaches and replace them with new ways of doing business.

To successfully manage change, it is necessary to attend to the wider impacts of the change and answer questions like how will our organization have to change to deliver better customer experiences? As well as considering the tangible impacts of change, it is important to consider the personal impact on stakeholders and their journey towards working and behaving in new ways to support the change.

In this highly interactive workshop, participants will learn the fundamentals of Change Management in enabling engagement and participation during change. They will also learn methodological approaches of planning, activating and managing change that will result in faster buy-in and proficiency.

This workshop provides opportunities for you to solve the behavioural change challenges that organizations encounter when faced by a need for change.

For more information, please click here (https://mycspn.com/blog/course/strategic-change-management-for-cx-success/)

To Register, please click here (https://mycspn.com/blog/events/strategic-change-management-for-cx-success-public-workshop/)

Share

World Class Customer Experience – Live Webinar Presented by Corey Atkinson

Join Corey Atkinson for CSPN’s Webinar Series. Register early!

Topic: World Class Customer Experience

Cost: FREE

Overview:

Now, more than ever, we are under a microscope. The online social media world – Google Reviews, Amazon, Yelp ,etc – is waiting to pounce with bad-good-better-best experiences to be starred, told, retold, or forgotten – in the real world. In this environment, how do we avoid the embarrassing “How did that happen?!” moments and instead drive the right customer experiences that we want people to talk about and remember?

This webinar will cover the must have strategies to be able to provide world class customer experience. These insights will allow you to gauge how effective your organization is at bringing to life the customer experience you imagine.

To Register, please click here 

Share

The Emerging Leader Part 2 – Live Webinar Presented by Corey Atkinson

Join Corey Atkinson for CSPN’s Webinar Series. Register early!

Topic: The Emerging Leader Part 2

Cost: FREE

Overview

Companies across every industry are facing complex organizational challenges that require the rapid development of new leaders. Advancing from a technical track to a leadership position requires more than solid management skills.

More than ever before, emerging leaders must quickly learn and deploy core management skills, develop a broad strategic perspective, take their leadership skills to the next level, and expand their professional and personal networks.

Emerging Leaders also need to take control of their career destiny, kick start their personal branding and embrace the concepts of self-guidance and continuous improvement.

To Register, please click here 

Share

Managing Difficult Clients & Situations Public Workshop

This course qualifies as one prerequisite towards CCSS© designation

Does your organization work with difficult clients? Are you interested in learning how to manage your stress and handle complicated circumstances while at work? If you answered yes, then this program is for you.

This workshop is designed to teach you all about the art of dealing with difficult customers and scenarios while at work. You will learn how to manage conversations, empathize with clients, identify triggers, negotiate, and most importantly, protect yourself physically, emotionally, and mentally on the job.

For more information, please click here 

To Register, please click here 

Share

Delivering Responsive Customer Service Public Workshop

This course qualifies as one prerequisite towards CCSS© designation

A great customer service experience is vital to the success of a company, and delivering that service is what shapes the customer experience. This training program is ideal for anyone who wishes to provide their valued customers with a premium level of service. you will learn how to better understand customer expectations, profile difficult customer situations, and deal with customer objections using a proven model for effective complaint resolution. It also goes over how to use assertive techniques and positive language to diffuse difficult situations, reduce stress, promote team camaraderie, and create a positive customer experience resulting in win-win situations.

This interactive workshop is informative, fun, and provides easily applicable solutions for service excellence that are proven to work in today’s toughest customer service arena – the real world.

For more information, please click here 

To Register, please click here 

Share