Data Security Tips

Cyber-attacks are becoming more sophisticated and fileless attacks are on the rise. It’s important to be educated on how to best protect your assets. 2/3rds of all cyber attacks are directed towards small businesses and 92% of malware is delivered via email. Below you will find tips to help you secure your data.

Endpoint Security

• Install endpoint protection on every endpoint
  in your business
• Verify Antivirus software is registered, up to
  date, and properly licenses and enabled.
• Preferably have a product that has alerting
  and is reportable.

Secure Your Network

• Put your network behind a firewall
• A properly secured firewall is one of the best
  lines of defense when securing any network
• If using Wi-Fi, make sure you are using an
  encrypted passkey
• Segregate internal network from any guest
  network(s) you may have
• Implement a robust email filter

Have a Password Policy

• Require users to change their passwords every
  15 days
• Change passwords every 180 days
• Minimum length at least 8 characters – longer is
  better than more complex
• Passphrases (I eat hamburgers on Tuesdays!)
  This has 29 characters!
• Must use 3 of 4 available character types
  (Uppercase, Lowercase, Numbers, Symbols)
• Set a minimum password age policy

Educate Employees

• Largest security vulnerability is the end user
• Educate using real examples of phishing
  attacks and what users should look for
• Have a policy in place for what a user should
  do if they believe they have been infected

Secure Physical Access

• Physical access is king!
• Verify computers are secured, including laptops
• Use hard drive encryption. This is build into
  Windows 10, but you need to enable and
  configure it!
• Have server and networking equipment in a
  secured location, behind locked door with
  limited access
• Disable any unused network wall jack

If you have additional questions about data security or would like to talk with a IT representative, contact us.