Analysing Ethical Issues In Cyber Security

Analysing Ethical Issues In Cyber Security

 

In my previous article, I have talked about some of the legal issues that you need to understand when it comes to cyber security in an organisation. In this article, I will be looking at some of the ethical issues in cyber security. Follow me as we look at that in this article. 

 

 

Personal Ethical Issues

A person may act unethically and not be subject to prosecution, fines or imprisonment. This is because the action may not have been technically illegal. But that does not mean that the behaviour is acceptable. Ethical behaviour is fairly easy to ascertain. It is impossible to list all of the various unethical behaviours that can be exhibited by someone with cybersecurity skills. Below are just two. Ask yourself:

  • Would I want to discover that someone has hacked into my computer and altered images in my social network sites?
  • Would I want to discover that an IT technician whom I trusted to fix my network, told colleagues personal information about me that was gained while working on my network?

 

If your answer to any of these questions was ‘no’, then do not do such things to others.

 

Corporate Ethical Issues

Ethics are codes of behaviour that are sometimes enforced by laws. There are many areas in cybersecurity that are not covered by laws. This means that doing something that is technically legal still may not be the ethical thing to do. Because so many areas of cybersecurity are not (or not yet) covered by-laws, many IT professional organizations have created codes of ethics for persons in the industry. Below is a list of three organizations with Codes of Ethics:

 

  • The CyberSecurity Institute (CSI) has published a code of ethics that you can read here.
  • The Information Systems Security Association (ISSA) has a code of ethics found here.
  • The Association of Information Technology Professionals (AITP) has both a code of ethics and a standard of conduct found here.

 

ethical issues in cyber security

Cisco has a team devoted exclusively to ethical business conduct. Go here to read more about it. This site contains an eBook about Cisco’s Code of Business Conduct and a pdf file. In both files is an “Ethics Decision Tree”, as shown in the figure. Even if you do not work for Cisco, the questions and answers found in this decision tree can easily be applied to your place of work.

 

As with legal questions, in general, if you are confused about whether an action or behaviour might be unethical, assume that it is unethical and do not do it. There may be someone in your company’s human resources or legal department who can clarify your situation before you do something that would be considered unethical.

 

 

Search online to find other IT-related organizations with codes of ethics. Try to find what they all have in common.

 

 

The figure depicts an ethics decision tree. In any ethical dilemma, ask yourself these questions: Is it legal? Does this comply with our code and our company policies and the principles of ethical behaviour they reflect? Am I sure it would not cause loss or harm to our company and its shareholders? Would it be okay if everyone did it?

 

Am I sure that I would be comfortable if I read about it on the front page of the newspaper? If the answer is yes to all the questions, then your decision appears to comply with our code. If any of the answers is not sure, Wait! Talk to your manager, legal counsel or HR representative for guidance. If any of the answers are no, you should STOP! This action could have serious legal ramifications.

 

 

Now your take on this argument.

We would also like to hear what you feel about the topic we discussed today. Your feedback is very important to us. Feel free to drop your comments and recommendations. If you have a contrary opinion, you can drop that too.

You can also join our Facebook Page CRMNigeria for more updates. You can do that by clicking on the link or searching for our page on Facebook.

 

You can also join our WhatsApp Group Here.

 

Enter your email address to get updates when we post our next article. you have to click on the link in the email sent to you to confirm your subscription. If you have been receiving our email updates and it is no longer active, please subscribe again.:

Delivered by FeedBurner