Whats effective cyber security practice?
You need to know what info you hold and why you hold it. Is it sensitive? Do you review who has access to the most sensitive data? Do you understand your possible vulnerabilities?
Protect your sensitive data. Do you use systems to encrypt and protect your critical data from unauthorised access?
Backup you critical systems and data, and test the back up process. Do you know if you are able to restore services in the event of an attack?
Keep systems, software and apps up-to-date and fully patched. Do you make sure your computer network is configured to prevent unauthorised access?
Ensure your staff use strong passwords when logging on to hardware and software. Change the default Administrator credentials for all devices. Do you use two-factor authentication where the confidentiality of the data is most crucial?
People are an integral part of the cyber security chain. Do you educate your staff on cyber security risks?
Gaining a recognised accreditation, such as Cyber Essentials, could improve the security of your firm. Do you align your firm to a recognised cuber scheme?
Sharing threat information with your peers, though networks such as the Cyber Security Information Sharing Partnership (CiSP), is a vital tool in strengthening your cyber defences. Are your a member of any information sharing arrangement?