Not all businesses have a formal IT policy, and it's something worth doing. The information shared here came from the cyber crime conference I attended last week in Cambridge, held by the county's PCC. A broader overview of cyber crime in Cambridgeshire can be found in the previous blog post.
What is an IT policy?
You probably already know – a document or collection of documents that set out best practice for staff regarding cyber security, online access, emails, etc.
The aim to to stay safer by educating staff. By having an IT policy, staff should be aware of preventable issues and be able to respond quickly if something is amiss.
How important is it?
We need to do more to protect company data, according to the experts: http://www.cambridge-news.co.uk/Cambridge-companies-beware-cyber-attacks/story-28609175-detail/story.html
According to Cambridgeshire Police, one local medium-sized business went bust due to the extent of a cyber crime, and many companies are victims on a smaller scale (see more in this post).
What should be in an IT policy?
Below are some things to think about:
What is the policy on storage such as USBs? Can staff bring in personal USBs and use them on a work computer?
Who and where are you buying hardware, software and services from?
Passwords Are colleagues allowed to share passwords? Are all desktops and laptops password protected? Network and remote access
Can you logon to the network externally?
Who can access your office? Employees, cleaners, visitors?
Who has access to what?
Email links and attachments
Think about a policy on clicking links, or file extensions to be aware of. For example receiving a .exe file from an unexpected source should be a red flag.
Do you keep backups and who is responsible for them?
Are laptops or towers/monitors left logged in and unattended?
When I hear two-step authentication I think of banks or Google mail logins, where you have a password and a text, or password and security key.
It is also something else just as useful – literally getting a second authorisation before committing to a payment. A common way of scamming money relies on administrative staff not getting a second authorisation after receiving an email from the boss. This is called CEO spoofing (see more on CEO spoofing in previous blog post).
The policy should also include what to do in the event of a security breach (see previous article for advice on this).
Ecommerce via a mobile phone or tablet has overtaken ecommerce via desktops and laptops for number of visits, with two thirds of all online website visits being mobile.This is a higher overall percentage than the US, Germany and India. The stat of 65% of online ecommerce being via a mobile was taken from January of this year.
The report is by Similar Web, a website analytics company. We're looking at a snapshot of findings below, relating to mobile ecommerce.
Mobile ecommerce (sometimes referred to as mcommerce) has been growing steadily over the years, with mobile versions of websites being an increasing area of investment for businesses.
As an example, for Black Friday, Similar Web said that for 25 large retailers (including Amazon, Ebay and Argos), the daily average amount of visits per site was 761,000 for desktops and just under 1.4 million for mobile devices.
Desktops still popular
While more traffic was shown to go through mobiles, shoppers spend more time per visit on desktops. In turn, they also view more pages than those looking on their smartphones.
Mobile conversion rate lower
While mobiles have proven to be massively popular for online shopping, there is one significant aspect in which it is still catching up to desktop, and that's with purchasing.
In previous research by IMRG, it showed that conversation rates on mobile, while lower than desktop, had gone up significantly year on year. The IMRG study also showed that more sales themselves (rather than traffic/visits) are through a mobile device.
So while visits and sales are higher on mobiles, the conversion rate is still lower.
The report by Similar Web shows that smartphones are at a 1.16% conversion rate, while traditional computers are at 3.65%. Interestingly the tablet, in between sizes, fares pretty well, much closer to computers at 3.22%.