9 Tips for Cyber Security

1. Protect against viruses, spyware, and other malicious code.

It is crucial that all your computers are equipped with the latest antivirus and anti-malware software that updated regularly. These resources are available online from a variety of vendors. The vendors update regularly to ensure that they can correct any security problems that may occur.

2. Secure your networks.

Safeguard your Internet connection by using a firewall and encrypting information. If you have a wi-fi network, make sure it is secure and hidden. To hide your wi-fi network, set up your wireless access point or router so it does not broadcast the network name, known as the Service Set Identifier (SSID). Password protect access to the router.

3. Make backup copies of important business data and information.

Regularly backup the data on all computers. Some critical data may include word processing documents, electronic spreadsheets, databases, financial files, human resources files, and accounts receivable/payable files. Backup data automatically if possible, or at least weekly, and store the copies either offsite or on the cloud. If you don’t have it in two places you don’t have it at all.

4. Control physical access to computers and network components.

Prevent access or use of business computers by unauthorized individuals, as they can access your information externally. Laptops can be particularly easy targets for theft or can be lost, so lock them up when unattended. Make sure a separate user account is created for each employee and require strong passwords. Having a separate account for each employee makes it easy to see who did what and when. Administrative privileges should only be given to trusted IT staff and key personnel.

5. Require employees to use strong passwords and to change them often.

Consider implementing multi-factor authentication that requires additional information beyond a password to gain entry. Check with your vendors that handle sensitive data, especially financial institutions, to see if they offer multi-factor authentication for your account. Don’t forget to delete accounts of past or terminated employees.

6. Educate employees about cyber threats and hold them accountable.

Educate your employees about online threats and how to protect your business’s data, including safe use of social networking sites. Depending which type of business, employees might be introducing competitors to sensitive details about your firm’s internal business. Employees should be informed about how to post online in a way that does not reveal any trade secrets to the public or competing businesses. Hold employees accountable to the business’s Internet security policies and procedures.

7. Create a mobile device action plan.

Mobile devices can create significant security and management challenges that are often overlooked, especially if they hold confidential information or can access the corporate network. Require users to password protect their devices, encrypt their data, and install security apps to prevent criminals from stealing information while the phone is on public networks. Have a system in place that can eliminate sensitive information on a mobile device that is stolen.

8. Secure you wi-fi network.

It’s not just outside wi-fi you must worry about it is imperative that you secure your own wi-fi. If you have a wi-fi network for your workplace, make sure it is secure, encrypted, and hidden. To hide your wi-fi network, set up your wireless access point or router so it does not broadcast the network name. Password protect access to the router so only authorized personal gain access.

9. Limit employee access to data, and ability to install data.

Another step to implement internally is to not provide any one employee with access to all data systems. Employees should only be given access to the specific data systems that they need for their jobs, and should not be able to install any software without permission.