Welcome to episode 30 of the Technology in Human Services podcast. In this episode I chat with Cybersecurity professional Kassia Clifford. LinkedIn has become a great place to learn from others and make new connections. Kassia and I recently connected, after I’d been following her excellent sharing for some time. She shares practical, useful, and urgently important tips about cybersecurity. She calls herself a “Cybersecurity Interpreter,” an important skill set and attitude that she uses to share what she’s learning about cybersecurity risk, in an accessible way. I’ve learned a lot from her and when she shared a particular post about free and easy ways to improve security, I knew I wanted to chat with her on the podcast. I think you’ll find it useful and you’ll leave with some practical next steps to make sure your online activity is secure. Here’s that post and what she wrote: * #MFA : block #hackers who gain access to email creds ??* #Passwordmanager : store complex pswds in a safe place?* Auto-updates : keep the latest #security patches on your OS??* #Antivirus scanner : detect threats proactively??* Full-disk encryption : #reducetherisk if a device is lost/stolen ??* #Awarenesstraining : make #cybersecurity a part of the convo* Access mgt: MFA, limit admins, team drive If some of those hashtags make you scratch your head, don’t worry. All is explained in this episode! Some core questions we started with: In spite of moving services online over the past year during the pandemic, and even before, many nonprofits have low literacy when it comes to online privacy, security, confidentiality, and knowledge of encryption. On your site you describe yourself as a “cybersecurity interpreter.” I think many nonprofits could use someone with a title like that! Can you describe what that means? You share great tips and what you’re learning on LinkedIn. Recently you shared practical and easy ways to improve individual digital security. Can you go over those tips and explain why they’re important? What would your advice be to nonprofit leaders about steps they need take when it comes to risk assessment and security in their agencies. In particular, I’m thinking about social service agencies that interact with clients and lots of their personal information. How should nonprofit organizations and workers go about learning about cybersecurity? What baseline skills, attitudes, and approaches should they be taking to ensure they work safely online and with client data? Resources: Kassia was nice enough to provide a list of useful and important resources that will be useful for you as your explore and learn about cybersecurity: General Cyber Awareness Training: * Securicy* Wizer* Udemy * RBC Kidsplanation Videos: (Easy, light 1 minute videos, could have a Lunch and Learn with an entire team, watch and discuss together)Email Phishinga rel="noreferrer noopener" href="https://youtu.