10 ideas to protect your business (NOT JUST IT IDEAS)

The bad guys are increasing their attacks on small and medium business and not for profit organisations.   In most cases the Christmas and new year lapse reduced the attacks, but once again they are gathering strength.

How can you make sure that you are not a target.

Use complicated passwords – Make sure that all users are protected with a high level password.   A password consisting on letters, numbers and symbols and if possible use a space somewhere in the password.

Do not write passwords down – although you are using complicated password do not make it necessary for users to write it down and keep it in the desk drawer.

Train your staff – Teach your staff the culture of the business.   Teach them to protect themselves and the flow on effect from that is that they will then protect your business.

Lock computers – when not in use computers should be locked so that unauthorised people do not have access to computer and network resources.

Check suppliers – make sure that suppliers are who they say they are.    Make sure you do your due diligence on them.

Audit – on the spot audits are a great way to make sure that everything is working and all users are doing the right thing.   It will also expose external things as well as long as it has been set up correctly

Change positions in the business – sometime it is necessary to change positions in the business to ensure that the business is functioning correctly and there are no shady deals happening in the background.   This can also help in improving processes.

2 signatures are better than one – if you are a larger organisations then money leaving the business needs to be signed off by 2 people to ensure that there is nothing untoward happening.

Cheque books – not many businesses use the cheque book or cheques but this should also include a 2 signature process.

Reduce the chance for fraud – no matter what your business, fraud at any level goes straight to the bottom line.   Keeping fraud under control in your business can be part of the normal management process

Roger Smith, is an educator. Teaching students at ADFA (UNSW) and showing them how vulnerable they are to cybercrime.

He is also CEO at R & I ICT Consulting Services Pty Ltd, an Amazon #1 author on Cybercrime and founder of the SME Security Framework. He is a Consultant who specialises in inexpensive and highly effective security strategies for small and medium businesses and not for profit organisations.

He has developed and authored the SME Security Framework and the Security Policy Training Course which are considered to be the definitive guides to helping SME's protect their organisation using the principles of Technology, Management, Adaptability and Compliance.