Technology has done amazing things in the business world. From connecting coworkers around the globe to allowing employees to work right from their homes, there’s not much that can’t be done thanks to technological innovation. Of course, any great advancement comes with its downfalls, and in the case of technology in the business world, this drawback has been security issues. And while it’s ideal to have professionals assist in data security, there are a few do-it-yourself data protection strategies business owners can utilize.
1. Always Keep Software Up to Date
Many people just click “Remind Me Later” when a popup tells them that it’s time to update their computer software. By doing this, though, they’re missing out on product enhancements and bug fixes and are taking the chance of having compatibility issues.
When it comes to businesses, though, the stakes are much higher. Software updates also include security updates. If a new cyber threat evolves that affects a software suite, one of the only ways to stop it is by upgrading. Because of this, a business owner should never ignore these updates.
2. Require Employees to Change Passwords
Employees are going to make mistakes, and occasionally, these mistakes allow cyber criminals to gain access to vital information. Occasionally, these criminals will even sell obtained passwords on the black market to the highest bidder.
To make matters worse, many people use the same password for everything. This means that if one of their accounts gets hacked, they’re all potentially hacked. It’s scary to think a person being irresponsible with their Facebook password could cause a data breach, but it happens. Fortunately, requiring employees to change their passwords periodically can mitigate this danger.
3. Control Access to Data
It’s okay to trust certain people with data access, but it is typically a bad idea to trust them with all of the data access. Ensure that no one controls enough information about the data that serious damage could occur if they’re compromised. Additionally, use passwords to keep employees out of systems unless their job requires access, and keep any physical files under lock and key.
4. Perform Exhaustive Background Checks
Performing a background check is the first and one of the best defenses against data breaches. While people typically think of a lone hacker in a dark basement somewhere trying to break into mainframes, the truth is that most data breaches occur in-house.
Business owners should never just trust what applicants say about their history. Performing a background check will reveal if they’ve ever been charged with a crime involving moral turpitude. Additionally, it’s smart to contact at least two references the applicant provides.
5. Have a Disaster Plan in Place
Not every danger to data is related to careless employees, cyber criminals or disgruntled workers. In reality, a single disaster, whether it’s man-made or natural, can leave a company with all of its data destroyed. The cost and time involved in replacing this data has driven countless companies out of business.
It’s often impossible to prevent a disaster, but it is possible to prevent a data loss. Storing information in the cloud and using service as a software (SaaS) can accomplish this necessity. While it’s possible to keep this data in public clouds, it’s usually better to use a professional cloud provider that utilizes additional security measures.
Data protection is one of the most vital functions of any business — regardless of its overall size. The aforementioned tips can go a long way, but budding entrepreneurs would do well to at least consider a data security consultant. This can help fill in some of the gaps, and between this professional help and do-it-yourself security techniques, a business can rest assured that their data is as secure as possible.
Source: SANS ISC SecNewsFeed @ January 31, 2017 at 04:12PM