Enhancing Cybersecurity with Real-World Challenges
FirstBank has implemented a unique strategy to prevent burnout among its cybersecurity professionals: continuous red-team exercises. These exercises involve hiring a third-party to carry out simulated hacks at unpredictable intervals.
But how does subjecting employees to constant threats from a red-team adversary alleviate stress? The answer lies in providing security professionals with tangible targets to pursue and overcome. Working with security tools that generate numerous alerts, the majority of which turn out to be false alarms, can be frustrating. However, successfully thwarting the red team’s attacks gives the team a sense of achievement and satisfaction.
While maintaining a third-party red team throughout the year can be costly, it serves to keep the team motivated and sharp. Regular communication with the red team ensures that their efforts are adjusted according to the FirstBank team’s workload, with more complex attacks being introduced during quieter periods.
Additionally, injecting a bit of fun and lightheartedness into the workplace can go a long way in boosting morale. For instance, recognizing individual achievements with creative rewards like handmade “pizza party coupons” can lead to actual pizza parties in the office.
It is crucial, however, to ensure that team members understand that these gestures are not substitutes for more substantial incentives. Clear communication is key to avoiding any misconceptions regarding the purpose of such rewards.
For more insights and updates from the event, make sure to bookmark this page. Follow us on X (formerly Twitter) @BizTechMagazine and join the conversation using #RSAC.
