Your InfoSec Do List

  1. Educate  - Establish policies and train your employees on information security and how to protect your business data.   Make sure they know what is appropriate to share on social networking sites.  You don’t have to re-invent the wheel, we have sample security policy handbooks available for customers to download.
  2. Immunize - Install antivirus software and antispyware on all the computers that connect to your business network, and set it up for automatic updates.  McAfee and Norton are well known and respected brands, and Kaspersky and Bit Defender were identified by PC Magazine as the top rated in 2016.
  3. Secure - Secure your Internet connection by using a firewall and encryption.  If you have a Wi-Fi network, make sure it is secure and hidden, is not broadcasting the network name and is password protected. Control access to systems on a need to know basis.  Administrative privileges should especially be limited.  
  4. Be Strong!  (with Passwords) - Make sure you have passwords set up on all your PCs and sensitive applications.  Make them hard to guess and don’t share them.  Make sure a separate user account is created for each employee and require strong passwords. Make sure that any partners, vendors, or service providers have their own accounts if needed.  Multifactor authentication is a best practice for financial transactions or other highly sensitive data.
  5. Safe Payment - Have you already shifted to chip card technology?  This month was the deadline set by major U.S. credit card issuers to be in compliance.
  6. Back it Up! - You must do regular data backups on all key data, especially databases, financial and HR files.  Schedule automatic daily or weekly backups whenever possible, and store your data backups offsite or on the cloud.

As the owner of a small business, why should you worry about information security? We’ve all seen the news reports of large companies and the government getting hacked, but as a small business, do you feel that you ‘fly under the radar’?  Why would a hacker bother with your small business with so many larger targets?    

The fact is that most security breaches come from internal sources – your own employees – and over half of these are inadvertent.   As large businesses have been getting better at making themselves secure, so small companies are becoming more attractive targets for hackers. 

Data theft or loss is one of the most common scenarios, however other threats may include viruses or other malicious code infecting your systems, or tampering with your Web Site or your social media presence.

So what can a small business do?   There is a lot you can do to become more secure, and most security measures can be implemented for free or at a very low cost.  Especially when you consider the cost of securing your information vs. the cost of a security breach.

Basic security measures are common sense, and the problem is finding the time.  If you have security concerns, but don’t have the time to address them, call Relate Fast!   We will provide a security assessment and action plan that meets your needs at a very reasonable cost.

Relate Fast Blog

InfoSec for Small Business