Cyber hygiene for the shop floor: the eight behaviours that actually matter

Cyber hygiene training for production and logistics environments works when it targets a short list of concrete behaviours rather than abstract awareness. Eight cover most of the real risk on a floor: phishing recognition, password and badge discipline, USB and device hygiene, tailgating and door control, clean handling of company information, photography and social posting limits, incident reporting and safe use of personal phones in controlled zones.

Why behaviours rather than awareness?

Because the floor is not the office. Floor workers, very much including the flexible shell, interact with terminals, scanners, machine HMIs and badge readers under time pressure. Awareness scores do not change incidents; specific do-this-not-that behaviours do, and they can be tested. Each of the eight converts into a scenario question a worker can pass or fail honestly in their own language.

The eight, in one line each

Phishing: recognise and report, never click to find out. Credentials: one person, one badge, one login, no sharing for convenience. USB and devices: nothing unknown gets plugged in, ever. Doors: no tailgating, even for someone carrying boxes. Information: production data, customer names and schedules stay inside; assume screens are readable. Phones and photos: know where photography is prohibited and what never goes on social media. Reporting: a fast honest report beats a quiet fix, and a near miss is a free lesson. Personal devices: charge them where allowed, never on production equipment.

How long should training take?

Around 25 minutes holds attention and fits a shift handover. Longer formats trade completion rates for thoroughness and lose, especially with temporary workers paid by the hour. The assessment matters more than the length: short, scenario-based and in the worker's first language. This is the curriculum design behind EdXactly Pass.

How do you keep it current?

Treat the behaviour list as versioned content: when regulation or threat patterns shift, the curriculum updates centrally and newly issued credentials reflect the new version. Evidence that names a version and a date is worth more to an auditor than evidence that says "completed."

Last reviewed: June 2026. This article is general information and is not legal advice.