Slashdot Mirror

← Back to Stories (view on slashdot.org)

Computer Competency Test For Non-IT Hires?

Posted by kdawson on from the first-prove-you're-a-human dept.

wto605 writes "As computers are used for more and more vital business functions, small businesses must have office employees who understand the dangers of, and how to recognize and avoid, malware, spam, and phishing. After having been stung by monthly virus cleanups (at $75 an hour) due to an otherwise competent office manager, my parents have realized they need to be aware of their employees' computer skills beyond the ability to type a letter in Microsoft Word (currently the closest thing they have to a test of computer competence). The problem is, as a small business, they have no IT expert who would be able to judge a potential employee's competency. I'm wondering if anyone knows of a good way to test these security/safety awareness skills, such as an online test, a set of questions, etc. I have already pointed them to Sonicwall's Spam and Phishing test, but it definitely does not cover all of the issues facing computer users."

6 of 369 comments (clear)

  1. Anybody can have a bad day by topham · · Score: 5, Insightful

    Anybody can have a bad day.

    Just because someone is competent with a computer doesn't mean they can't be the vector for an infection. If you start with that premise you'll realize how completely futile it is. What you need instead is a tutorial program to reduce risks. Things they should and shouldn't do, etc.

    And proper anti-virus processes and procedures.

    1. Re:Anybody can have a bad day by ls671 · · Score: 5, Interesting

      When working for big corporations, I often have to pass a "computer security and privacy awareness test". It is usually implemented through a web interface with simple radio button forms (multiple choices) and I have to pass it before I can get any access to their systems.

      Trust me, you really do not have to be a techie to pass it but you must know basic principles about internet security and privacy issues, confidentiality and security levels etc.

      The solution seems simple enough; just get a template for one of these tests that pretty much look alike in any big corporation. Such standard tests but be available through the internet.

      Have the candidates pass the test. Also, state strict sanctions for mistakes with regards to not following those basic guidelines and make them clear right from the start, preferably as part of the test. Candidates get the idea that you do not fool around with these topics.

      --
      Everything I write is lies, read between the lines.
    2. Re:Anybody can have a bad day by tomhudson · · Score: 5, Funny

      Rule # 1 - the source of the problem is ALWAYS sitting between some keyboard and chair somewhere. Find that person!!!

  2. Replace their PC's with Mac Mini's by ducomputergeek · · Score: 5, Interesting

    Get parallels or VMware if they really need Windows from something, have them run it in a virtual machine. Yes there may be an upfront cost to switch from MS Office for Mac from the windows version, but if the VM gets infected, nuke the VM and install a fresh one.

    Something we learned real quick was that higher up front costs with macs were quickly recovered since we weren't dealing with these type of problems on a regular basis.

    Hell, I have programmers that are good programmers but frankly don't know the first thing about systems administration.

    --
    "The problem with socialism is eventually you run out of other people's money" - Thatcher.
    1. Re:Replace their PC's with Mac Mini's by v1 · · Score: 5, Interesting

      (while I like the Get A Mac suggestion, perhaps something more windows-zealot-friendly...)

      or get something like Deep Freeze and have it simply restore the HD to factory every 2am. And use network home folders and shares for documents.

      Then you have ONE place to run the malware/av software on, the server's shares, at 2am while all the machines on the floor are reimaging themselves for tomorrow.

      (there's no point in suggesting something that they're unlikely to try even if you can make a good case for it or in fact are offering a very competitive suggetsion)

      --
      I work for the Department of Redundancy Department.
  3. Re:Simpler solution... by Anonymous Coward · · Score: 5, Insightful

    Oh sure, while you sit in the back playing games and watch Hulu all day... Screw you. I worked in an office where the computers were "locked down tight" for a few months.

    "How many ounces are in a liter?"
    "Just a sec while I Google it. Oh wait, I can't. Give me fifteen minutes to walk over to the factory and physically find a 1L bottle so that I can look at the fucking label."

    If I wanted to protect all of the fleet vehicles from damage all I had to do was throw away the keys. But that would be about as stupid and lazy as your locking down the internet connection. It's 2010, do your job, do it well and stop acting like the non IT employees are a bunch of chimps.