Too many small and medium businesses spend their limited funds on security products only to see their investment – and best intentions – wasted when they fail to implement the most basic security practices.
1. Install Antivirus
We’ll get this one out of the way first! Your best defense against the vast majority of active malware is your antivirus solution. Select an antivirus solution that performs strong with independent tests like AV-Comparatives. Look for advanced features that protect against prevalent threats like ransomware, and choose an endpoint security solution that offers protection at multiple attack points to defend against bad websites, phishing and spam, malicious URLs, Zero-days and other online threats.
2. Restrict Administrator Rights
Only authorized, knowledgeable IT admins should have administrator rights to your PCs. While it may seem like an inconvenience at times for small organizations, granting administration rights to a broad user base is a big risk. To maintain the highest security standards, you need to ensure users cannot change critical settings, download and install whatever software programs they wish, or disable the security tools you’ve put in place. Moreover, some malware is unable to execute and make malicious system changes if the user is logged in without admin rights – creating an additional layer of defense against malware users may encounter.
3. Install and Update a Firewall
Be it the Windows firewall or a third-party firewall application, be sure to install a firewall to defend against malicious network traffic. Firewalls monitor and control traffic in and out of your network. To protect against downloading malicious content or to stop communication to harmful IP addresses, a firewall is a critical line of defense. Always keep it updated or it will start to miss threats.
4. Implement Patches
Don’t ignore those prompts to update popular software applications used in your organization. In many cases, prompts to update Adobe, Java, Chrome, iTunes, Skype and others are to fix discovered security vulnerabilities in those products. Cybercriminals exploit vulnerabilities to open a backdoor onto your systems to drop malware and infect your network. Implement an automated patch management solution to address this issue, or select an endpoint security solution with patch management included.
5. Enforce Password Policies
Users may view password updates as a chore, but password implementation and enforcement are a must. Require strong passwords or pass phrases to maximize effectiveness, implement regular updates and instruct users not to share them.
6. Lock Those Screens
All computing devices, including laptops, tablets and smartphones, have screen-locking features for security purposes. Be sure to enforce a short lock-screen timeout as added protection, especially in environments where users can walk away from workstations without logging off.
7. Secure Wi-Fi Routers
Wireless routers and networks are notoriously easy to break into, so take extra precautions in securing them. Change the network names and passwords that come with each router, and don’t forget to activate its encryption capabilities. Use a separate Wi-Fi network for business guests. Also consider not broadcasting your network ID for added protection against hackers trying to discover and access your network.
8. Secure Your Browsers
Configure web browsers to avoid inadvertent malware downloads by users. Steps to take include disabling pop-up windows, which can contain malicious code, and using web filters that warn you of potential malware attacks and harmful sites. Also, pay attention to browser privacy settings to prevent any private information from being siphoned by fraudsters and cyber-thieves, limit users ability to install browser plug-ins, consider disabling vulnerable applications like Adobe Flash, and always ensure you’re using current and fully patched browsers when possible.
9. Use Encryption
Many machines come with built-in encryption, both at the disk and file levels. Take advantage of each device’s encryption capabilities to prevent data from getting into the wrong hands when laptops, external hard drives, USB drives and other mobile devices are lost or stolen.
10. Train & Recruit Your Users
Security isn’t successful in a vacuum. Your users can be your biggest liability or your biggest asset. Engage your users and educate them on security best practices and why they are important. Train your users to spot threats, like malicious phishing attacks or strange PC behavior, and alert your IT leader immediately.
In addition to investing in the right security tools, it is critical to implement these security best practices to ensure your network is well defended from cybercriminals.
Local: 804-767-2136 (Richmond, VA, USA)
Toll Free: 1-888-233-1176
Email Us: firstname.lastname@example.org
Monday - Friday: 9am - 7pm EST