List of best practices
Malware Detection and Removal
Malware is any software that is intended to cause damage to or disable your computer systems, so the detection and removal of this malware ensure that your system runs smoothly and that your company can function at peak efficiency. To detect and remove malware, opt for software that scans any emailed or downloaded files. Supplement it with a policy of never opening emails from unknown senders and regular training for employees on malware prevention.
ENCRYPTION (AT REST)
Encryption protects the sensitive data of your company by making the contents of a disk or files unreadable without a special key. When used properly, it is impossible to access your important data without decryption. To make full use of encryption, implement a policy where you encrypt all crucial files before saving them. You can choose to do so on a file-by-file basis or via disk, folders or USB drives. Encryption is particularly crucial for any business using cloud storage.
Multi-Factor Authentication
Multi-factor authentication is the process of requiring an additional security code to log into an account or make certain high-level changes. This is a crucial security measure that means that a hacker cannot get into your system even if they have an employee’s password. The best solution is to require multi-factor authentication for all accounts that have access to any sensitive information.
Password Testing and Management
Passwords are one of the first things preventing hackers from getting into your system, but they are useless if they are easy to guess. Create rules that require strong passwords, and encourage employees to use an approved password manager so they do not have to remember multiple passwords.
UPDATE AND PATCH
Patches and updates are the new versions of programs that resolve minor issues from the previous version. They regularly contain new security measures, and if ignored, you leave hackers an opening to get into your system and steal your information. Your policy should include a schedule of updating and installing patches at least once a week, preferably daily. Make it your policy to never put off patches unless absolutely necessary and to include additional security measures if you do put them off.
Data Backups
Backups are the additional copies of your company’s crucial information, and they are there to help you if you should experience a crashed computer, a natural disaster that damages your equipment, a hacker breaking into your system, or another type of equipment failure. Best practices involve making backups of all important files at least once per week, if not more often. Additionally, you should log user activity that edits these backups.
Web Browser Security
Web browser security focuses on enhancing the security when your employees browse the web using devices on your network. Specifically, these policies work toward preventing the accidental download of viruses and malware. Begin by ensuring that all browsers are up-to-date and disabling any malicious plugins, only leaving reputable plugins your company needs. Encourage users to only visit websites with HTTPS for the added security and not to store passwords in the browser.