10 simple ways to secure your firm's data
Published: Tuesday, 5 February 2019
Make it difficult for cyber criminals and erroneous employees to access company data.
You may have seen some of these suggestions before but how many are you carrying out regularly?
- Change passwords immediately from the pre-set default, and regularly thereafter. A recent article suggested over 21 million passwords were in the public domain (and associated emails) – check whether yours is one of them by clicking here.
- Maintain up to date software on all devices – apply patches soon after release, these are designed to protect against the latest threats. Do you have a list of all your devices and the current software version they are using?
- Use strong anti-virus software on all devices and a reliable firewall. Homeworkers may be particularly vulnerable if they are using their own devices or software.
- Train your staff thoroughly in cyber awareness and keep awareness up to date, and in the front of minds, with regular CPD.
- Be cagey on social media both for corporate and personal sites – the more personal information you share, the more can be used against you in a phishing attack. Children’s birthdays and pets anyone?
- Develop a BYOD policy – many people now use their personal phone or laptop for business. All such devices should be password secured, on the latest operating system and able to be remotely wiped if mislaid. The greatest risk is if others use your device, even just occasionally (children are particularly adept at randomly clicking on links).
- Consider encrypting email and devices – essential for transferring sensitive information online
- Restrict downloads and USB port access – just a quick question is enough to establish whether staff really need a new program or download for business purposes
- Back up regularly - preferably overnight and keep a copy offsite, at least weekly
- Buy cyber insurance – if the worst happens you can have access to expert help quickly. Cybercrime is currently the largest source of cyber claims, with ransomware causing the most severe claims.