Just as people launch resolutions at the beginning of a new year, it’s also a great time to review your company’s status—were you fiscally responsible, financially successful, how did your team work together this year? In our day-and-age one of the most important questions a company can ask is “how does our cybersecurity measure up?” Unfortunately, the conversation usually ends there. We put on the blinders, ask IT to review our systems, and then cross our fingers and toes in hopes that the threats won’t affect us.
Often, cybersecurity seems too complicated and abstract to tackle, so we do another virus scan, maybe update our software and hope that all the outside sources we’ve purchased services and software from are being prudent.
If you want to do better this year, but don’t know where to begin, THIS IS THE BLOG FOR YOU.
To celebrate the new year, we created an infographic you can share with your team for easy reference throughout the year to keep you on track. Here are the 4 basic steps you and your team can put in play to amp up your defenses.
DEFINE YOUR SYSTEMS & POTENTIAL ENTRY POINTS
Before you can get started on amping-up security, you have to know what you have (and what you don’t). Ask your IT team (in-house or outsourced) about any changes made to the software, network or devices—like your laptop or PC—that you use regularly. Be specific in your conversation, aiming at potential weak points an attacker could exploit, as well as, ideas on how to secure these points. Have a point person in charge of making a bullet-point list of the areas that need to be evaluated and tackled.
BACK-UP YOUR DATA
Sometimes being secure really is this simple. So many companies skip this step or set up an automated back-up but forget to check that the process is actually occurring and that back-ups are being kept off-site and off the network. Ransomware has taught some powerful lessons, but none more powerful than to keep an offsite, current back-up of data available.
Updating your staff is a two-fold mission. First, make sure your entire team is updated on cybersecurity best practices. Re-emphasize basics like phishing emails, as well as, any system-specific weak points that staff may inadvertently leave vulnerable to attack. While, phishing emails and basic attack vectors are commonplace ways to attack, they are still very successful, mostly due to a lack of training and information. Second, analyze your system and your team to decide if you need additional staff or outside services to help improve security. Do you have cybersecurity personnel on staff? Have you been relying on a basic IT team to get the job done?
CREATE A PLAN
Effective cybersecurity is not impossible when broken into small, realistic steps. Attaining BIG GOALS requires a plan and cybersecurity is no different. After identifying weak points and assessing your staff, create an attainable plan to address your weak points and identify any resources needed. If you don’t have any on-staff cybersecurity professionals, perhaps your first step is simply to get actionable intel from an outside firm. If that’s the case, you can start with some quick information on Vulnerability and Patch Management Services.
If you don’t want to go through another year WONDERING if you’re company is secure, check out the infographic and follow the 4 basic steps to amp up your defenses. Don’t keep questioning what your weak points are, know them and what to do about them.