There is a lot of impressive technology that exists to help prevent cyber attacks, but if your employees aren’t informed, that technology alone will not be able to stop a breach. The best way to educate your employees about cybersecurity is to develop an employee cybersecurity policy. Here are six things your employee cybersecurity policy needs.

Have a checklist

“One of the best ways to write a solid cybersecurity policy is to start with a checklist. The priority should be simplicity (so that everyone can easily understand) and standardization. It’s also crucial that the checklist is easily available so that employees may turn to it when they need clarification,” advises Chad Hunter, cyber security manager at Big Assignments. A good checklist will include basic hardware practices such as locking down a computer when not in use and immediately reporting missing devices.

Keep everything up to date

A big part of keeping your company data secure is making sure employees are diligent about applying updates and patches when required. There can be a lot of different types of devices and operating systems in a workplace. It’s important that there is centralized action on the part of the IT department, to ensure all devices and OSs are up to date. Usually, this takes the form of mandatory updates when a device in need connects to the network. This is in contrast to the option of simply letting the user know it is time for a security update. The former method can be inconvenient when an employee wants to use the device, but the increased level of cyber attacks makes the mandatory option worthwhile.