Many businesses use traditional guidelines to safeguard information. These standards were devised from the study of infosecurity management and pyschology. Traditional guidelines covered such issues as how to select your employees, how to develop an honest culture and how to perform risk assessments. These guidelines are too often seen as rigid, and so they havent been modified to meet the needs of the 21st century. It is possible to institute many practices a business can institute, such as how employees select their employees.”]
Source: https://www.csoonline.com/article/2118551/securing-the-business.html