While there is no 100% protection against cyber attacks, the following options each provide an additional layer of security:
- Employee Training: Conduct security awareness training for your employees.
- Network Management: Avoid mapping network drives; create shortcuts instead. Limit access to data – even the CEO doesn’t need read/write access to all folders.
- User Permissions: Minimize local admin rights for users or, even better, disable them altogether. Block USB ports for storage devices.
- Policies and Protocols: Establish guiding policies for your staff.
- Authentication: Ensure everyone utilizes multi-factor authentication (MFA).
- Document Security: Encrypt vital documents.
- Password Practices:
- Use complex and unique passwords, with a minimum of 14 characters.
- Avoid using the same password for multiple services.
- Employ a password manager.
- Updates and Passwords:
- Ensure firmware is consistently updated for all devices, including modems, routers, switches, NAS storage, etc.
- Alter all default passwords to new passphrases that are not easily guessed.
- Consistently update all software and operating systems.
- Backups: Ensure backups are encrypted and off-site. Avoid allowing backups to be deleted within the software.
- Network Security:
- Implement firewalls.
- Employ endpoint security measures and monitoring.
- Close unnecessary or high-risk ports, such as RDP.
- Cloud Management:
- If using SharePoint, access via a web browser instead of syncing to OneDrive. The same rule applies to G Suite.
- For O365 email users, consider subscribing to Defender to prevent harmful link and attachment access.
- Emergency Preparedness:
- Have a disaster response and recovery plan on hand.
- Consider investing in cybersecurity insurance.
Remember, layering these security measures provides a more robust defense against potential cyber threats.
