The Invisible Achilles’ Heel of Network Security

The Invisible Achilles’ Heel of Network Security

Not too long ago, we tweeted an article about the biggest hacks of 2018 and  yet another has just been revealed. This is becoming commonplace. The trend seems to be indicating that too many people have become complacent in their security protection. Hacking of any company’s data is BIG business – more so than most people realize.

According to CSO Online  about 58 records are stolen EVERY SECOND! Even though smaller breaches go unreported, larger ones are usually reported and, at an estimated average cost of $141 per record, the bill for a breach can be staggering.

Sticking your corporate head in the sand and saying “It won’t happen to me” is a big mistake. It is far better to put resources in place to ensure you have done everything you can, to defend yourself. Unfortunately, firewalls, anti-virus, anti-malware, strong passwords, biometric devices, and physical security measures are not always good enough. As a business manager (or owner) you also need to train your IT staff in what to look for that may indicate a threat, what to do during an attack, and how to mitigate potential future intrusions… BUT there is another layer of weakness that is often overlooked…

You may remember the story, from Greek mythology, of Achilles. He was the baby who, it was foretold, would die young. His mother took him to the river Styx, and dipped him in, holding him by the heel, in the hope that the magical water would give him the power of invincibility. Into adulthood, he survived many battles however, one day, a poisonous arrow was shot at him and hit him in the (un-dipped) heel. He died soon afterwards.

Forbes  revealed that, even after you have spent money on putting a strong security protocol in place to protect your company, and trained your IT team, your other (non-IT) employees can cause your company’s security downfall. Any employees who fail to follow simple security-oriented steps (either accidentally or deliberately) can cause gaping holes in otherwise competent network security.

It doesn’t matter how big or small your company is, employees can still be the cause of major weaknesses in your network security. Even if you think that training them is going to be more than the current budget can handle, that price, whatever it may be, is still going to calculate out as being significantly less than the cost of mitigating the devastating result of a full-scale breach.

Some of the old phrases or “sayings”, that we all heard our Grannies tell us, containing their sage wisdom, have never been more appropriate: “a stitch in time, saves nine” advises us that it is better to make your employees aware of the basics BEFORE they let you down, and potentially cost you a fortune, than leaving it until it is too late, and then being forced to “close the barn door after the horse has bolted”!

Training ALL your employees < not just your IT team > in network security is essential, because your company may already possess its invisible “Achilles’ heel”.

NC-Expert has been aware of this problem for a long time and offers training classes in network security – both for IT professionals AND for non-technical employees.

Contact us TODAY to discuss how we can help your employees prevent disaster!

===
Non-Technical Security Training:

  • CertNexus’ CyberSAFE
  • also NC-Expert exclusive training (contact us for details)

===
Professional Network Security:

===
If you would like to learn more about how NC-Expert can help,  contact us TODAY  !

NC-Expert Blog

Vendor-Neutral Certifications Matter More Than People Think

By Rie Morgan June 1, 2026
We all know that technology changes fast : vendors update products, rebrand solutions, release new platforms, and occasionally decide that the feature you spent months mastering is no longer "fashionable". In an industry that constantly evolves, it’s fair to ask an important question: Should you focus on vendor-specific certifications, or do vendor-neutral certifications still have a place? The answer might surprise some people. Despite the growing number of vendor-specific training paths, vendor-neutral certifications such as CompTIA Network+, CompTIA Security+, and CWNP Certified Wireless Network Administrator (CWNA) continue to provide enormous value. In many cases, they offer benefits that extend well beyond a single product, platform, or employer. For engineers pursuing a promotion, changing careers, or trying to build a stronger professional foundation, vendor-neutral certifications may matter more today than ever before.

IT Certification Exams: the Struggle is Real!

By Rie Morgan May 20, 2026
Why Experienced Engineers Sometimes Struggle with Certification Exams If you’ve spent years working in IT, there’s a good chance you’ve had this thought at some point: "I do this stuff every day. Surely the certification exam will be easy?" Then reality arrives. You sit the exam. The questions seem strangely worded. Topics appear that you rarely touch in your day job. You find yourself second-guessing answers you know are correct in the real world. Before long, confidence starts to evaporate. It’s a surprisingly common experience. In fact, some of the most experienced engineers occasionally struggle with certification exams, not because they lack technical ability, but because experience and exam readiness are two very different things.

Strong Passwords and Protocols

By Rie Morgan May 7, 2026
We are constantly being told to make sure our passwords are secure, and create a secure password. But oftentimes, the same sources don’t clearly explain how to do this and we are left puzzled and concerned about how to get it right. In this blog I will attempt to draw together the most reliable sources and explain what they mean and how to create the best password for your needs.