
Improving Communications is a Primary Goal of National Cybersecurity Awareness Month
October is Cybersecurity Awareness Month and part of its key initiatives is to improve basic communications. So, with the support of my esteemed colleagues, we have put together this blog that minimizes reading, maximizes comprehension, and avoids obstacles and confusion from technical and security email communications. If we work off the assumption that everyone’s time is valuable, these recommendations will lead to great time and productivity savings across an entire organization and even with communications between partners and clients. It will help convey the basic communications many organizations lack due to social media, texting and even personalities. Therefore, consider email with the following traits to enhance cyber communications: 1) Goal - The goal with an email or meeting invite is to clearly communicate information with an economy of words.- Avoid telling a story
- Focus on needs and expectations
- Set deadlines clearly
- Avoid long paragraphs and blocks of text. If you find you’ve written several, you’re including too much detail.
- Focus on the issue, not backstory or related situations unless absolutely relevant.
- Bullet points or numbered lists are great for focus and readability.
- Numbers are helpful to provide a reference point for responses.
- Use full and correct names. Abbreviations, nicknames, and first names only can cause confusion.
- Be sure to include clear expectations for resolution, including specific action items for named team members, partners, clients, and all parties.
- The subject line should be as short as possible but clearly summarize the discussion. There should be no ambiguity.
- Ensure the subject line is pertinent for the discussion and do not change it.
- If you change the subject line, delete unnecessary portions from the body and consider it the beginning of a new thread.
- When emailing externally, avoid including internal resources such as developers.
- BCC them if need be but some team members in every organization should not be forward facing.
- Clearly indicate questions and action items (including dates and names).
- Do not ask general requests, no one will ever own them.
- If you don’t know what the action items are, perhaps a meeting is better. That might be a better purpose for the email request in the first place.
- Ensure the meeting title captures the intent. See email subject line guidance above.
- Attendees:
- Invite only those that need to be there.
- If you’re not sure who should be on there, find out. Talk to managers and leads.
- If an attendee is not going to talk or be responsible for any actions, they probably don’t need to be there.
- If someone is there “for visibility”, it is better to get them caught up afterwards with a summary or minutes.
- Include an Agenda
- Vital to focus the meeting
- Quick reminder of what the meeting is about, essential for busy people
- Allows pre-meeting preparation to be performed by attendees
- Avoids meeting subject creep. “While I’ve got you here….”
- Clearly state goals of the meeting:
- What is its purpose?
- Where do we want to be?
- What do we want to solve?
- Tie goals or discussion points to owners where possible.
David Allen, VP, Engineering
As Vice President of Engineering, David is responsible for development and quality assurance for the PowerBroker and BeyondInsight product lines. Having worked in several other development and management roles throughout the years, David brings with him the decades of experience and knowledge required to manage high performance teams. Prior to its acquisition by BeyondTrust, David was the Director of Engineering for eEye Digital Security where he was instrumental in growing the development organization and increasing the delivery capacity of the team. Previous to eEye, David managed the Canadian Engineering team for NetPro before the acquisition by Quest Software in 2008.