It was known that Microsoft was making security its biggest concern and priority. However, the extent of the seriousness has come as a surprise. The tech major has actually gone ahead and linked security efforts with employee’s performance reviews. That means, if employees are found to be lacking in terms of focus on security, they can expect smaller increments and bonuses, and lesser promotion opportunities.
This move to step up security measures follows a series of serious security threats.
A cyber security report had highlighted a need for an overhaul of the security culture at the software company. As a result, the company is going to slowly do away with the basic authentication for personal Outlook accounts with effect from September 2024.
An internal memo has been issued to employees informing them about the new policy which requires security to be part of performance reviews and assessments. Henceforth, managers will recommend employees for hikes, promotions and bonuses based on their focus on security measures and efforts. How much employees prioritise security in all their work, and how well they have brought about impactful security changes will determine their rewards. Technical employees will have to ensure they integrate security into product-design processes on commencement of a project. They will be assessed on how well they follow the set security practices, and ensure products are secure by default for customers. Employees, including executives have been instructed to use the ‘Connect’ tool for performance reviews, as part of the Secure Future Initiative (SFI) aimed at securing and safeguarding the organisation’s networks and systems.