Why does full disk encryption matter if I have a strong password?

A login password only protects the operating system entry point. Without full disk encryption, an attacker who physically steals your laptop can remove the hard drive, connect it to another computer, and read all files directly, bypassing your password entirely. Full disk encryption (like BitLocker on Windows or FileVault on macOS) scrambles the entire drive contents so data is unreadable without the encryption key.

How quickly can an unlocked computer be compromised?

An unattended, unlocked computer can be compromised in under 60 seconds. An attacker can plug in a USB device that installs malware, exfiltrate files to a thumb drive, or access email and internal systems. The USB Rubber Ducky, a well-known attack tool, can execute a full payload in under 15 seconds. Locking your screen (Win+L or Cmd+Ctrl+Q) takes one second and eliminates this entire attack surface.

Encryption & Lock Discipline

Practice the habits that protect unattended devices.

What Is Encryption & Lock Discipline?

Device encryption converts your data into unreadable code that can only be unlocked with the correct credentials. Full disk encryption (using BitLocker on Windows or FileVault on macOS) protects everything on your hard drive. If a laptop is stolen or lost, an encrypted drive is essentially a brick to the thief. An unencrypted drive can be read by anyone with a $20 USB adapter and five minutes of free time. This simulation begins with a common situation: you step away from your desk to grab coffee, leaving your laptop open and unlocked in a shared workspace. The exercise fast-forwards through what an attacker can accomplish in the 90 seconds you are gone. Reading your email. Copying files to a USB drive. Installing a keylogger. Accessing your company VPN because your session is still active. It takes less time than you think. You will practice the habits that prevent both opportunistic theft and targeted attacks against your devices. The exercise covers configuring automatic screen lock timers (the recommended maximum is 5 minutes, but 1-2 minutes is better for shared environments), setting strong device passwords that differ from your network credentials, and verifying that full disk encryption is actually enabled on your machine. The simulation also addresses scenarios beyond the office. Working from a hotel lobby, leaving a phone in a rideshare, or having a bag stolen at an airport. Each scenario reinforces a simple principle: encryption protects data at rest, and screen locking protects data when you are nearby but not paying attention. Both are necessary. Neither is optional.

What You'll Learn in Encryption & Lock Discipline

Verify that full disk encryption (BitLocker or FileVault) is enabled on your work devices and understand what it protects against
Configure automatic screen lock timers to activate within 1-5 minutes of inactivity depending on your work environment
Recognize what an attacker can accomplish with physical access to an unlocked device in under two minutes
Apply different security practices for office, home, and public environments based on the threat level of each setting
Understand why encryption and screen locking serve different but complementary security functions, and why both are required

Encryption & Lock Discipline — Training Steps

A Busy Morning at Cascade Financial

It's a busy Thursday morning — you're reviewing three client portfolios ahead of quarterly review meetings this afternoon.
Reviewing Client Portfolios

Alice opens the internal client portal to review the Henderson, Park, and Okafor accounts. She logs in and pulls up the portfolio dashboard.
An Urgent Phone Call

Alice's phone rings. It's David Chen from the Henderson account — he needs the Q3 performance summary urgently for a board meeting that was moved up to this afternoon. The physical file is in the records room down the hall.
Rushing to the Records Room

David needs that file NOW. Alice jumps up from her desk, grabbing her badge. In her rush, she completely forgets to lock her workstation. The client portfolio data — Henderson, Park, and Okafor accounts — remains fully visible on screen. Three client portfolios. Wide open. Anyone walking by can see everything.
Back at Your Desk

Alice returns with the Henderson file. Her screen is exactly as she left it — portfolios still visible, nothing seems disturbed. She doesn't think twice about it. She sends David the information he needs and continues her day.
A Normal Week Passes

One week later. Alice is starting her Monday morning when an email from IT Security stops her cold.
The Incident Report

The email is devastating. Three of Alice's clients — Henderson, Park, and Okafor — reported receiving targeted phishing emails containing their exact portfolio details. The data exposure was traced to Alice's workstation.
What Happened While You Were Gone

The incident report reveals exactly what happened during those 5 minutes Alice was away. Security camera footage and badge scan logs paint a clear picture.
The Damage

The impact assessment shows the full scope of the damage. What seemed like a harmless 5-minute absence has become a serious security incident.
What Should Alice Have Done?

Before continuing to remediation, let's reflect on what went wrong.

What Is Encryption & Lock Discipline?

What You'll Learn in Encryption & Lock Discipline

Encryption & Lock Discipline — Training Steps

A Busy Morning at Cascade Financial

Reviewing Client Portfolios

An Urgent Phone Call

Rushing to the Records Room

Back at Your Desk

A Normal Week Passes

The Incident Report

What Happened While You Were Gone

The Damage

What Should Alice Have Done?