The new year is the perfect time to reset goals and build new habits. But apart from the usual commitments to exercise more, doomscroll less or eat better, 2026 is the year to finally get ‘cyber-fit’ – you don’t even have to drive to a gym for this one.
While cybersecurity often feels like a chore – or something only people in IT departments need to worry about – Anna Collard, senior vice-president: content strategy chief information security officer (CISO) advisor at KnowBe4 Africa, argues that building better digital habits is actually an act of self-care.
“Effective human risk management rests on three interconnected pillars: people, process and technology,” explains Collard. “When we align our personal behaviours with these organisational cybersecurity pillars, we don’t just secure where we work; we reduce our own personal cognitive load, stress levels and exposure to mounting risks.”
Here are five resolutions that will make your digital life leaner, safer and easier to manage in the year ahead.
I will pause before I click
“Before opening attachments, clicking links, or responding to unexpected requests, take a moment to verify the sender and content,” advises Collard. “Particularly when the message seems urgent or in some other way emotionally triggering, it’s a warning sign to slow down. A few seconds of mindfulness can really prevent a major data breach – for you or your organisation.”
This concept of ‘digital mindfulness’ is about interrupting impulsive behaviours. It helps individuals strengthen their cognitive defences and cultivate a security-first culture that benefits their personal financial safety just as much as their employer’s data.
I will outsource my memory to a password manager
Do you still save all your passwords in your browser, or worse, reuse the same password for everything thinking ‘it’s complex enough’? If so, this is the one habit to ditch immediately.
“Strong, unique passwords for every account reduce your risk dramatically,” states Collard. People who do this already aren’t superheroes who can remember dozens of different passwords, they just let technology help them so they don’t have to reuse or remember more than one advanced master password.”
Using a reputable password manager removes human error from the equation. It is a prime example of how better security doesn’t have to compromise convenience. By letting a secure tool handle the heavy lifting, you protect your identity without the headache of constant resets.
I will act as a ‘human sensor’
Many employees delete phishing emails but fail to report them. While deletion protects the individual, it leaves the rest of the organisation exposed to the same attack.
“Deleting a phishing email protects me, while reporting it protects everyone,” Collard asserts.
By using a Phish Alert Button (PAB) within Outlook or Gmail, users can instantly forward suspicious emails to security teams for analysis.
“When you push the PAB, you aren’t just following a rule; you are acting as an early-warning radar,” she says. “This simple action strengthens the herd immunity of the entire organisation.”
I will take my digital vaccination
Installing updates can seem like a nuisance, especially when it interrupts a workflow. However, these updates are the digital equivalent of a flu shot.
“Software patches fix vulnerabilities and make your devices more resilient in the face of emerging threats,” comments Collard.
The critical importance of this was demonstrated by the historic WannaCry ransomware attack, which exploited a vulnerability in Windows that had actually been patched months prior – but victims hadn’t installed it. Keeping devices updated is a low-effort habit with a high-yield security return.
I will declutter my digital footprint
Digital hygiene is all about keeping things tidy across all your devices. Just as a cluttered home causes stress, a cluttered digital life creates risk.
“From uninstalling unnecessary apps, to reviewing app permissions and social media settings, it is a good idea to start the year with a leaner, safer online presence,” Collard suggests.
A key part of this hygiene is separation. Collard recommends keeping personal and professional lives distinct: don’t use personal cloud storage for company documents, and keep work emails strictly for business.
“Having less exposure means fewer attack surfaces,” she concludes. “A tidy digital life is a safer one – both for you and your organisation.”