Citing the fact that cyber threats are as prevalent as rainfall in London, Microsoft has resolved to improve the security of its systems. This American technology and computer manufacturing firm is usually in the news for its strategy of capitalizing on security like never before. As from today, every employee of Microsoft will be measured on how effectively they are addressing the issue of security.
Security Is The New Priority At Microsoft
In January this year, Microsoft signaled its intent to place security as one of its number one priorities after several years of the company being plagued with security issues and criticism. The company is not just giving speeches on security management but also has incorporated it as part of the employee performance appraisal process.
This plan was outlined by Kathleen Hogan, Microsoft’s chief people officer, through a memo. She emphasized that “Everyone at Microsoft will have security as a Core Priority,” with a clear message: put simply, when making a choice, security is the priority”.
The new policy is clear: neglecting security might result in an employee losing his/her opportunity to be promoted or receive salary raises and bonuses. In other words, if you are not contributing towards the security cause then there may be a possibility that your career might be shifted to the slow lane. Hogan’s memo makes it abundantly clear that security is not something to be added as another feel-good goal; it is a performance indicator. Therefore, Microsoft employees, get ready; you are about to embark on developing your security skills.
A Microsoft-Wide Effort
The company has included security as one of its priorities that are discussed under the ‘Connects’ – periodic check-ins with employees’ managers to discuss one’s successes, challenges, and goals and so on, meaning that people will be discussing security – goals and achievements of course in the same way as other priorities.
Explaining the new policy through an FAQ, Microsoft warns employees that security should always be an important consideration when going about any work.
This is significant for technical employees that proactively integrate security right from the beginning of the product development, implementation of well-set security measures, and guarantee that products are protected by default for consumers. So, when this app or service, which you are developing is under construction, security has to be the ground.
Tools of the Trade
The firm expects all its employees to conduct the performance reviews using the company’s Connect tool, irrespective of their status, including the executives who also have their security considerations to meet. Microsoft has recently launched its internal Secure Future Initiative (SFI), which is transforming it for the better, with the goal to safeguard its networks, production systems, and engineering frameworks.
Some of these security enhancements are taking place on the administrative level while others are being reflected by products such as Outlook. For example, they are discontinuing Basic Authentication for Outlook personal accounts and phasing out the lite version of the Outlook Web App. Users of Outlook.com, Hotmail, and Live.com will require Modern Authentication for apps after September 16th, which in turn might indicate that people say farewell to some third-party email apps, including Outlook from version 2010 or older, Apple Mail from version 10 or older, and Thunderbird from version 24, or older.
Conclusion
Microsoft is not giving a pep talk to its employees this time. From the company’s CEO, Satya Nadella, to the People’s Manager, everyone is just talking about the same thing. Also, to make sure these efforts don’t go vain, Microsoft has started to incorporate these practices in its employee evaluation system. Clearly, every employee will be thinking, “How can I contribute to enhancing security, so that I advance in my career ladder?”. And I think that this is pretty genius move on Microsoft’s part.
