Your stored business data travels in and out of your network. What key controls can you put in place to ensure it’s safe?
Many cyber security incidents can be prevented by applying basic computer security practices, controls and software programs.
Here are the minimum steps you need to take to improve your cyber resilience.
Keep your business computer for business use only
If the computer you use for business is shared with family members or used for social media, playing games, watching videos and downloading music, there’s a higher chance of it being exposed to malicious software. Even with separate logins, there is still the possibility that another user of the computer may unintentionally download a virus or malicious software to the computer itself, which can affect your business information. It is good practice to have a dedicated computer for business use.
Always keep your Operating System and applications up to date
An Operating System (OS) manages all the software and hardware on a computer system. The most common types of OS are Microsoft’s Windows platform or Apple’s Mac OS X. It’s good practice to upgrade your operating system when new versions become available. This is because the OS upgrades include enhanced security features and bug fixes.
Security vulnerabilities and bugs are emerging all the time. You can set up automatic updates and installations of the latest updates to keep your operating system protected.
Find out more about keeping your operating systems, applications and internet browsers up to date by reading How to protect your business from cyber security threats.
Install a firewall to block unwelcome access
A firewall is a protective security system that monitors and manages traffic between your computer network and the internet. It filters traffic types that can reach your network based on a set of defined security rules. If incoming traffic breaches a security rule, that traffic will be blocked from reaching your network.
Keep your anti-virus and malware protection up to date
Anti-virus software is a tool to protect your computer or network from cyber security threats. Cyber security threats include malware being installed on your network. If a threat is detected, you receive an alert along with the recommended action you need to take.
Operating systems offer inbuilt anti-virus and malware protection. The key to staying protected is to install updates as soon as they are available.
Protect your data with encryption
Encryption software protects your data by disguising it in a code that unauthorised people can’t view, even if they have physical access it. Search the support pages of Microsoft or Apple security to find out how to turn on encryption for data security.
Keep passwords strong and secured
Always have unique strong passwords for all your online accounts and logins. Never share passwords amongst business colleagues or family.
Set up two factor authorisation (2FA)
Over and above using strong passwords, add an additional layer of security by choosing 2FA. This is particularly important if you have staff accessing your systems remotely. Secure apps such as internet banking with 2FA.
- For more information, check out 6 simple ways to protect your passwords.
Uninstall programs that are not used
Get into the practice of checking what programs are installed on your systems. Uninstall any software program that you don’t need as you may be unnecessarily opening yourself up to security vulnerabilities.
Also, by getting familiar with the programs that you expect to see, any unwelcome or malicious programs will stand out.
Be vigilant on access management
- Employees in your business should have their own login credentials to business systems.
- Remove administration rights from computers that don’t need it.
- Don’t browse the internet using an administration account. This prevents the entire network from becoming infected if a compromised website is visited.
- Ask your IT provider if they have remote access to your systems and what security controls they have in place.
- Ask your IT provider if they use different passwords for each of their customers’ sites.
Back up your data regularly
If your system is compromised, you’re at risk of losing all your business data. Make sure you back up your data regularly. To find out how read the article How to store your business data securely.
For more information about basic computer security
- Australian Signals Directorate (ASD) > Strategies to mitigate cyber security incidents
- Australian Cybercrime Online Reporting Network (ACORN) > Protect and Prevent
- Australian Cyber Security Centre (ACSC) > Report a Cyber Security Incident
- Australian Competition & Consumer Commission > Scamwatch
- Stay Smart Online > Protect your business