It’s more important than ever to protect your business data, but it can seem an impossible task on where to get started. That’s why with the help of Continuum the IT management platform we’ve come up with a 15 point checklist to help protect your business from a cyber attack.
We’ve been helping business with their IT infrastructure since 2002 and have seen the world of cyber security change drastically, and doing nothing is no longer an option. We’ve listed the points below but make sure you take a look at the full PDF to see all 15 points in an easy checklist format. You could even print it out to use in your office. Make sure you let us know in the comments below how many of the 15 you have in place.
It’s important to establish a baseline and close existing vulnerabilities. When was your last assessment?
Secure your email. Most attacks originate in your email. We’ll help you choose a service designed to reduce spam and your exposure to attacks on your staff via email.
Apply security policies on your network. Examples: Deny or limit USB file storage access enable enhanced password policies, set user screen timeouts, and limit user access.
Train your users – often! Teach them about data security, email attacks, and your policies and procedures. We can provide cyber security training to your members of staff.
Advanced Endpoint Detection & Response
Protect your computer’s data from malware; viruses, and cyber attacks with advanced endpoint security. Today’s latest technology (which replaces your outdated anti-virus solution} protects against file-less and script-based threats and can even rollback a ransomware attack.
Utilise Multi-Factor Authentication whenever you can including on your network, banking websites, and even social media. It adds an additi10onal layer of protection to ensure that even if your password does get stolen, your data stays protected.
Keep Microsoft, Adobe, and Java products updated for better security. We provide automatic updates and security patched to protect your computers from the latest known attacks.
We review all of your files to ensure only the authorised people have access. New people must be approved by a decision maker before they’re given access.
SIEM/Log Managment (Security Incident & Event Managment)
Uses big data engines to review all event and security logs from all covered devices to protect against advanced threats and to meet compliance requirements.
Web Gateway Security
Internet security is a race against time. Cloud-based security detects web and email threats as they emerge on the internet, and blocks them on your network within seconds – before they reach the user.
Mobile Device Security
Today’s cyber criminals attempt to steal data or access your network by way of your employees’ phones and tablets. They’re counting on you to neglect this piece of the puzzle. Mobile device security closes this gap
Turn on Intrusion Detection and Intrusion Prevention features. Send the log files to a managed SIEM. And if your IT team doesn’t know what these things are, call us today!
Whenever possible, the goal is to encrypt files at rest, in motion (think email) and especially on mobile devices. Encryption stops your data from being readable.
Backup local. Backup to the cloud. Have an offline backup for each month of the year. Test your backups often. And if you aren’t convinced your backups are working properly, call us ASAP.
Is there a detailed plan in place to help get your business back online if the worst should happen?
How did you score?
A perfect 15? Somewhere in the middle? Or none at all? Let us know how many measures you have in place from our checklist. Want to know more about a particular point? Or want to boost your businesses’ cyber security? Get in touch using the form below;