The 2020 pandemic has impacted businesses adversely across sectors, and in all ways possible. It is expected that many small businesses may not recover from the jolt at all, and there are likely to be more job cuts than what we have heard in news in recent days. To add to that, cybersecurity concerns are looming large on companies of all sizes. SIA along with Wall Street Journal published a report sometime back, which stated that there has been a massive increase in attacks through partners, customers and vendors on businesses. If yours is a small business trying to ensure at cybersecurity at workplace beyond compliance, here are some pointers to consider.
- Focus on backups. Ensure that you have data backups at all times, so that encryption or modification of data using malware by hackers doesn’t impact your operations. You can always restore the files and data.
- Ask employees to create strong passwords. All passwords must be at least 12 characters long, should have numbers and special characters, must be complicated to remember and never reused for other gadgets, networked devices and accounts.
- Recommend a password management tool for your employees. This is one of the foremost things that your business can do to save passwords from being hacked. Password managers are usually considered low-risk tools, and there are varied options.
- Use multifactor authentication. For certain accounts, critical resources and devices, like servers, DVRs and IP cameras, ensure that you use a second or third layer of protection, like OTPs and biometrics.
- Place devices behind firewalls. While this one of the basic aspects of cybersecurity, many companies continue to ignore the same. Firewalls are incredibly useful in preventing direct security breaches.
- Use a firebreak. Also called network segmentation, this is about dividing the resources on different networks or subnetworks. In case of a breach, it is easier to isolate the infected network and continue with operations.
- Focus on malware prevention. Change all default passwords immediately after product deployment, and patch your software and firmware to the latest version. Where needed, consider installing advanced antimalware software.
- Check on emails. Emails often have links and attachments, which contain malware, and once downloaded, the file can cause massive damage. Teach your employees on how to find suspicious files and ways to report a malware attack.
When it comes to cybersecurity at workplace, everyone needs to work together, and it is necessary to have a clear set of dos and don’ts.