7 Cyber Security ideas to protect your business

Introduction

We are all trying to protect ourselves on the Internet.   The problem is that we are all doing it to some level and not all of us are successful.   So here are 7 things that you need to put in place that will go along way to protect your individual information as well as your business.

Passwords – we all need passwords, probably 20% of web sites have a requirement for a username and password.   So we will produce a large number.   The thing about passwords is they have to have the following characteristics.  They have to be complex (letters, numbers, symbols and most important a space), they have to be more than 8 characters and they have to be unique as well as unique to each site.

Default passwords – change them, when you install a router, modem, computer or website change the default password and do not use a standard password for the password.

Training – no matter who you are, the Internet is a very dangerous place to navigate.   To improve you chances do a security awareness course – Cyber Security Awareness Course.

Computer security – the number of times I have seen a computer, tablet of phone with 20 or 30 updates pending for both operating system and applications is astronomical.   As a base, if the system is asking to be updated, patched or secured then do it at the next available opportunity.  You do not use your computer 24/7, there has to be sometime when you walk away from it – do the updates then.

Documentation – as a business documentation is critically important.   It helps you if something crashes and burns.   It helps in disaster recovery and business continuity as well as the induction process for new staff.  In addition to that documentation of processes and procedures can improve your business systems.

Too many admins not enough Brains – at home this is not a problem unless everyone knows how to log onto the computer as an admin.   In a business this is a major problem.   Administration access to systems, computers, servers and routers should be restricted on not only a need to know but also a reason to have access.

Know where your data is – for an SME this is critical.   Where is all of your information, not only from a use perspective but also for a business perspective.   If the information is all over the place, with no central location then if something is needed it takes time to find it.   For instance what was the last version of an invoice.

Roger Smith, is an educator. Teaching students at ADFA (UNSW) and showing them how vulnerable they are to cybercrime.

He is also CEO at R & I ICT Consulting Services Pty Ltd, an Amazon #1 author on Cybercrime and founder of the SME Security Framework. He is a Consultant who specialises in inexpensive and highly effective security strategies for small and medium businesses and not for profit organisations.

He has developed and authored the SME Security Framework and the Security Policy Training Course which are considered to be the definitive guides to helping SME's protect their organisation using the principles of Technology, Management, Adaptability and Compliance.

Leave a Reply