5 easy steps to reduce info security risks
are really as easy, and many people and companies are taking them up today. User training is the most important and easiest key to a better info-security profile for businesses. Most of the big corporations and even large Institutions University of North Carolina do regular user training to lower the footprint their technologies present to the world. Unfortunately, the trend has been catching on slowly in the Small and Medium Business (SMB) sectors.
The cost of penetration and vulnerability testing is low. The cost of patching and keeping devices updated and current is lower. The lowest cost of the three ultimate yet easy steps to reduce Cyber Threats in the SMB space is user training. Budgets need to include all three. Routine training for users and the exposed surface of SMB companies needs periodic monitoring and testing. It is easy. Do it today. Here is how.
That surface, profile or internet exposed face for SMBs is larger than most realize. “Sure,” we say, “huge companies like Adobe, EBay or even Target are marks for Cybercriminals. But we are safe here in our local, regional even global offices. Who is going to target us?” Part of the problem is most people in the SMB sector think about some sophisticated Matrix like image and feel that doing anything about cyber security is out of their grasp. It just is not that way.
We all know about it. What are small and medium businesses doing about the onslaught? Not much. It is easier and has a greater impact than one would think. Include all members of the team in these conversations. That means IT and senior management. This is the front line in the battle against compromised systems.
They do not have to be intense daylong sessions or even half-day meetings/trainings. #1 tool: Regular Conversations and follow up material about the threats, and the policies the company has to mitigate trouble. The best place to start is with writing down your team policies. The next step is a simple survey.
5 easy steps to reduce info security risks
- How often do you change your password and do other people know it?
- Is your password 8 characters, letters, numbers and symbols and not simply a word like password1?
- Is your system antivirus current?
- Is your computer up to date?
- Is your machine receiving updates regularly?
The machine update question is pivotal. What do employees know about antivirus, malware and updates to other hardware to your companies IT systems? The updates are just as critical on the supporting hardware. The SMB sector has gotten serious of late about firewalls and mobile devices but they are not simply objects to be ignored any more than the people are. Many security appliances run Linux or UNIX and need updates. Companies under maintenance and with regular upgrade policies are less vulnerable.
The only way to know with your company is vulnerable is to have testing preformed regularly by a third party company. Start your It Blueprint trial today.