Cyber attacks don't just happen to large organizations. Every business, large or small and those in between, has to protect their IT systems if they want to survive an attack. Below are eleven ways to keep your IT systems safe and secure.
1. Backup Your Data
We really can't say it enough. Back up your data (and on a regular basis). And use the 3-2-1 rule, where you should have at least three copies of your data, two stored onsite but on different media, and at least one copy stored off-site.
2. Use Strict Passwords
Make sure everyone in your company uses strong passwords. Require a minimum amount of characters (like 12) and require the use of upper/lowercase, symbols, AND numbers. Check out the blog we posted on World Password Day for some Do's and Don'ts: https://chrmanagedservices.com/blog/password-best-practices/
3. Use Strong Identity Controls
Identity controls, such as multi-factor authentication, go beyond the traditional username/password authentication. Consider using authentication controls that include features such as one-time passcodes and security questions.
4. Educate Your Employees on How to Be Cyber Aware
An employer's cybersecurity is the employee's responsibility as well. Ongoing and continual trainings develop a security-focused culture and makes cybersecurity awareness second nature to your employees. This blog provides more information on training your employees.
5. Ensure Compliance When Working Remotely
Employees working remotely exposes businesses to a whole new level of cybersecurity and compliance threats. We've written a blog that provides five ways to boost your security: https://chrmanagedservices.com/blog/compliance-working-remotely/
6. Prevent Others from Accessing Your Computer
Data breaches can occur when employees leave their computers unattended and unlocked. Implement a policy to lock the screen when employees leave their desk. Locking a screen is simple task that prevents someone else from obtaining secured information. Plus, make sure your employees know to store their devices in a secure place when not in use and not at work (don't leave it on the front seat of your car, etc).
7. Use a Secure Wi-Fi
Using public Wi-Fi or an insecure connection puts data at risk. Ensure your employees know to always use a secure connection when connecting to the Internet.
8. Keep Your Systems Up-to-Date
Update your operating systems, web browsers, and other applications when they receive updates. These udpates typically provide security improvements that will help protect you.
9. Know Who has Access
Restrict access to your IT systems. The fewer people with access, the less vulnerable.
10. Don't Keep Old Personal Data
To help you with your data protection responsibilities, only keep what you need for as long as you need. This will save you time and resources.
11. Don't Forget Physical Security
One layer of security is physical access. If an attacker has physical access to a system, it just made their task simpler. Know who's around and what's laying around.
