Here at The Bot Platform, we spend a lot of time talking about the benefits of bots and how they can improve the efficiency of your business and how they’re improving the efficiency of our customer’s businesses. Today we’re going to show you one of the ways that The Bot Platform benefits our business!
We pride ourselves on how seriously we take Information Security at The Bot Platform. We run to an Information Security Management System which is ISO27001, ISO27017 and ISO27018 certified. As part of this, our product is pen tested and our ISMS is externally audited at least annually and we run our own monthly internal audits to confirm we are reaching these standards. As part of this, we’re always looking to make our InfoSec efforts even better. Our newest bot, ‘Sherlock Bones’ was created for us to use internally as our one-stop place for raising all InfoSec-related questions.
In the ever-evolving world of cybersecurity, questions, incidents and more, the need for assistance arises regularly. Having a reliable and structured platform to address our InfoSec (Information Security) queries was crucial…This is where Sherlock Bones comes into play.
The Need for Sherlock Bones
In the past, when employees encountered InfoSec-related questions or needed to report a security incident, our InfoSec team would receive this information in a number of different ways.
It might be individual chat messages, Group messages, a comment on an existing post or a new post to our InfoSec Group on Workplace from Meta. There was no formalized structure, and even when requests or reports did come in, they would be written or structured in different ways, often requiring our InfoSec team to have to ask additional questions before getting to an answer or resolution to the query. Often these requests then needed to be manually logged for audit and InfoSec control purposes.
The Benefits of Sherlock Bones
Sherlock Bones addresses these challenges and provides a one-stop solution for all The Bot Platform’s InfoSec queries. This versatile bot streamlines the entire process, making it easy for users to:
- Report Security Incidents Whether employees have encountered suspicious activity, data breach, or any other security incident, Sherlock Bones allows them to report it easily and efficiently. They are prompted to provide all the necessary information which ensures the InfoSec team have all the details they need to quickly address and solve the issue at hand. A direct message is also automatically sent to the InfoSec Group Chat so they can triage and collaborate on the issue immediately.
- Check Whether an App or Tool Is Safe to Use and Make New Tool Requests If an employee wants to make use of a new app or tool, Sherlock Bones requests and posts the relevant details to the InfoSec team so that they can assess whether the tool meets our security requirements. Once the tool gets the ok, the staff member is then free to proceed. Having a clear and simple process for tool usage ensures no unauthorized or potentially harmful software or tools are used, while also simplifying the process for requests to be made in the first place.
- Report Dodgy Emails Phishing emails and other malicious messages are a constant threat. Usually, spam filters do the job, but sometimes they don’t. And all it takes is one accidental click or file download and entire companies can be taken down in a matter of minutes. The U.K.’s National Health Service (NHS) was attacked by the ransomware WannaCry. The attack resulted in multiple hospitals, general practitioners and pharmacies being affected in England and Scotland, with NHS facilities being forced to delay and divert medical services, resulting in losses of £92 million. Sherlock Bones lets employees report suspicious emails, helping staff to avoid falling victim to scams and phishing attacks like WannaCry. The insights from these reports can then be used to educate the whole company on any frequently seen or particularly harmful threats.
- Ask Questions Related to Compliance or InfoSec Best Practices If employees have questions about compliance with security standards or need advice on InfoSec best practices, Sherlock Bones is here to help. It allows for questions to be asked in a structured and organized manner, making it easier for our experts to provide valuable guidance.
- Broadcast Security Incidents Sherlock Bones is also used as a Broadcast tool. If there is a security incident that just one member of staff has experienced, the bot can send a message out to all members of staff or selected teams and departments to make them aware of the situation and ensure that the incident isn’t repeated.
The Goals of Sherlock Bones
Sherlock Bones aims to provide a structured and efficient platform for asking, reporting, and seeking advice on InfoSec matters. Furthermore, it automatically saves any reports it receives, meaning when it comes round to audit time you have a neat one-source of truth for all things InfoSec.
Using The Bot Platform’s analytics features, bot admins can also track usage metrics, see the most commonly viewed materials or questions asked – and use these insights to better educate their workforce or spot InfoSec training-related trends between different departments or locations of staff.
This data-driven approach empowers our InfoSec team to gain valuable insights into the areas that need the most attention. By collecting and analyzing this information, we can create a useful feedback loop for continuous improvement in InfoSec. It allows us to identify trends, common pain points, and areas where additional education or resources are needed.
Sherlock Bones is more than just a chatbot; it’s a solution to streamline and standardize the process of addressing InfoSec inquiries, ultimately leading to a more secure digital landscape for everyone.
Would you like to build your very own Sherlock Bones? Then get in touch today!
