This Microsoft dev battles scams daily. Here’s the one tip he wants you to know

The RSAC Conference is a unique opportunity for speaking with worldwide cybersecurity experts. Many folks are so deep in the trenches that they casually toss out great tips whenever you chat with them.

A great example: This acronym I picked up from Kelly Bissell, corporate vice president of fraud within Microsoft’s Security division. It focuses on how to avoid job scams—that is, phony listings and opportunities that might cross your path. But you can take away the general principles and apply them to other types of scams, too.

Stay S-A-F-E

Bissell says you should be:

• Sure of the company you’re applying with
• Able to apply for free
• Finding the job listing elsewhere online
• Examining job offers carefully and confirming the legitimacy of the companies

Look into a company to be sure of them, especially if the offer is unsolicited. Is there a company website with contact info? How long has it been in business? Can you find employees on LinkedIn, and what do their backgrounds look like? Do you know anyone in your network who works there that you can speak to? Or at the very least, what’s the good word on Reddit and job forums?

Job applications should never cost you a cent. That’s standard practice, no matter the industry and job level. Perhaps you may pay for necessary education (where you get to select the school or certification program) or a certification, but not to apply. A legitimate place does not ask for money—times haven’t changed on this point.

Monster.com / PCWorld

The work opportunity should be findable elsewhere, not just in the message you were sent. Depending on the field and position, you may be able to verify online through job listing websites and the company’s official website. Or, you may instead have to go through walking in the business and speaking with an official contact, like a manager or the owner.

Once you start finding info on the job and the company, also do a gut check, especially if you’re made an offer. Examine the facts you have for any red flags—do the hours seem strange? Does the wage match the usual industry standard for pay? In general, you want to confirm that the type of employment, schedule, wage or salary, location, and the manager you report to sound appropriate and fair. And again, be sure that you’re speaking to the actual company, not an impersonator.

Dodge all the scams

This advice is geared toward job scams, but you should check out other scams with this kind of thoroughness, too. Are you talking with a potential romantic partner or someone else online who is interested in getting to know you better? Is your kid on the phone or messaging you, begging you for help with a crashed car or posting bail? Has your bank texted you, saying your account has been frozen?

In these sample scenarios, stop and ask yourself, How well do I trust that this contact is legitimate? Are they asking for money? Does this inquiry involve my financial accounts, or could they eventually lead up to requesting cash? Have I verified this situation, or is this person who they say they are? What do I really know about this situation they’ve outlined?

Celia Ong

Scammers want you to be emotionally off-balance so they can take advantage. Don’t let them play off the fully human need to be gainfully employed, seek companionship, protect your family, keep your bank accounts safe, and the like.

Take inspiration from Bissell’s grandmother: When warned not to fall for any distressed child scams, she told Bissell she’d let him sit in jail. Her reasoning? He wouldn’t be there unless he’d been up to no good.

Harsh, ma’am. But not a bad default while you’re verifying the situation independently.