If you work in an office space, then you’re positioned at the front line of information security. The company you work at, may or may not have their own cybersecurity policy, which they expect each and every co-worker to adhere to. But even with all these measures in place, it’s always best practice to be on guard, as this will ensure the safety of company data.
Does the size of the company that you work at, make a difference? The reality is that hackers like to target the much larger organisations, but there are times when a smaller organisation may be a more attractive option. Why? Because a hacker may think that a specific smaller company may have fewer security measures in place, thus making it easier to infiltrate.
The company you work at may have in place, the best security tools and cybersecurity policies, but the most important thing is always the actions of the employees, as it most determines the security of company data. For example, an employee could make the mistake of sharing sensitive company data on their mobile device, which in turn leads to a data breach.
If you work at a medium size to smaller company, it’s very important that you’re familiar with the cybersecurity best practices. If you spend the time to learn about all the smaller things that make up cybersecurity, then it will better help you protect the organisation you work at.
1. Use Internet Security Software
Antivirus software has been around, almost since the inception of computers, and has been used quite effectively in the fight against malicious attacks. These software tools are designed to block malware, and other malicious virus types from infiltrating your system and compromising the data on it. It’s in your best interest to have an antivirus tool on your system, ideally from a reputable vendor. One antivirus tool to one system, is usually the way to go.
Using a firewall program is also just as important, when looking to protect your data from malicious attacks. When you have a firewall program on your system, it will help protect it from viruses, hackers and other similar attacks, that happen all too frequently over the internet. It does this by allowing and disallowing certain traffic from entering your system. Mac OS X and Windows come with their own firewall programs, named Mac Firewall and Windows Firewall. If you have a good router, then it should also have its own built in firewall program.
2. Regularly Back Up Your Data
Backing up the data on your system is a process, many end users tend to overlook. The very best security managers tend to adhere to a rule called the 3-2-1 backup rule. Essentially it works like this, by keeping three copies of your backed up data on two different types of media, whether it be a flash drive or external hard drive, and one copy of the same data in an off-site location, such as online cloud storage.
That way, if your system falls prey to a malware or ransomware attack, you will have your backed up data to call upon, which you can use to restore everything back to how it was prior to the attack.
3. Delete Suspicious Attachments in Emails
If you are unfamiliar with the sender and have no idea why they’re sending an attachment in the email, then it’s best not to open it. The best approach is simply to delete such emails. Why? Because hackers like to send unsolicited emails with viruses in them. They do this by hacking into email accounts then sending out emails to everyone on a victims contact list. So that is something to consider. If you receive an email, even from someone you know, and it appears suspicious, then you should tread with caution. You should email them, and let them know that their account has been compromised. You can combat a compromised email account by changing its password and also by implementing 2-step authentication.
4. Purchase the Best Security Systems
For the smaller company, they may think twice. When looking at the costs that goes into buying the very best security systems. Such protections may include things like antimalware tools, external hard drives. Which will be used for backups, and regular system check-ups. But putting the money into these systems at the early stages of a company. Could prove to be most cost effective in the long term – depending on the success of the company.
Every device that is used either at home or at work, should have strong security software on it. It’s very important for whatever company you work at to provide some form of data security. But it’s also your responsibility as an employee to alert the security department. When you encounter something that could be deemed suspicious. It could be the result of a flaw that exists within the system that needs to be tackled. The quicker you alert the necessary authorities, the better in the long run.
5. Implement Third-Party Controls
Here’s a fact that you may not be familiar with. But the vast majority of data breaches are the result of actions taken from within a company. That’s why it’s important that companies control what employees can and cannot access, in terms of client and customer information.
You may work as an employee in charge of using and accessing sensitive information. Whether on clients, customers and other company employees. If so, then it’s important that you take the time, to not just learn company rules. But also to follow them, to the letter. If it’s your duty to protect both soft and hard copies of this data. Then it’s your responsibility to keep said data out of the reach of cybercriminals.
Companies and the employees within it, may also be tasked with monitoring third parties. Which include ex-employees, consultants and temp workers, who at some point were given access to the company’s computers and network. It’s very important that certain areas remain restricted for said people. And that access for temporary users is deactivated once they’ve completed their task.
