Identify your critical assets and then build your cyber protections around the most critical first and then proceed to build safeguards to protect your entire business. Protections include, Implementing cyber protections on core assets and also Implementing basic cyber hygiene practices across the business. The goal is to build a culture of cyber-security while educating employees how to protect themselves and the business from cyber risks. While what you need to do will be based on your assets, protections may include:
- Locking down logins: Using stronger authentication to protect access to accounts and ensure only those with permission can access them. This can also include enforcing strong passwords.
- Backing up data: putting in place a system–either in the cloud or via separate hard drive storage–that make electronic copies of the key information on a regular basis.
- Maintaining security of devices over time: This includes knowing that software patches and updates are done in a timely fashion.
- Limiting access to the data or the system only to those who require it.
- Training Employees- Why cybersecurity is important to protecting your customers, basic practices that will keep them and the business cybersecure, how and when to report cyber incidents.
Related Article: Identify the “Crown Jewels” of Your Business
The first step in protecting a business from cyber threats is to identify the “crown jewels” of your business. Those assets and systems that are critical to your business–would have difficulty operating if they were lost our compromised and/or could be a high value target for cyber-criminals.