10 Best Practices Pledging Cybersecurity in SMBs
Better safe than sorry is an option that can be chosen by SMBs. With equipping cybersecurity norms of the company in a few steps, data is secured.
FREMONT, CA: Cybersecurity does not make it to priority lists in small and medium businesses (SMBs). Inefficient cybersecurity features are mainly due to the common opinion that hackers target only large enterprises. It is an incorrect notion as the survey conducted by the US Congressional Small Business Committee estimates that more than 71 percent of the SMBs have been targeted. These SMBs must equip the security systems to protect sensitive information. Some cybersecurity best practices for SMBS are:
1. Install UTM / Firewall: A firewall, IDS, and IPS can be easily installed to enhance the defense against hackers.
2. Document Info Security Policies: Documentation of all information and procedures will assist in the smooth transfer of knowledge to recruits or among colleagues.
3. Employee Education: As the majority of the threats arise from within the company, employees need to be provided with an orientation of the cybersecurity measures and identification of phishing emails, virus-attacked websites, and other signs.
4. Data Backups: Regular data backups need to be compulsorily carried out. It is safer to have a set of backups, both online and offline, in case of emergencies.
5. Install Endpoint: Endpoint security measures ensure the devices utilized by the employees are granted network access only if specific security standards of the company have complied.
6. Multi-factor Identification: Multi-factor authentication will provide an additional layer of protection against the adversaries.
7. Mobile Device Security: SMBs are advised to have an air-tight security plan and a BYOD policy for mobile devices. Employees need to automatically update security measures for compliance with the firm’s policies.
8. Enforce Safe Password Practices: Verizon in a survey reported that 60 percent of data breaches are due to weak passwords. Hence enforcing a password policy on devices linked to the company’s network is preventive.
9. Build A Solid Patch/Update: Patch management and frequent maintenance of all software need to be carried out regularly to avoid breaches by ransomware.
10. User Access: Identity and Access Management (IAM) will minimize unauthorized access to sensitive information in the SMBs.
By Tom Farrah, CIO & SVP, Dr Pepper Snapple Group
By George Evans, CIO, Singing River Health System
By John Kamin, EVP and CIO, Old National Bancorp
By Phil Jordan, CIO, Telefonica
By Elliot Garbus, VP-IoT Solutions Group & GM-Automotive...
By Dennis Hodges, CIO, Inteva Products
By Bill Krivoshik, SVP & CIO, Time Warner Inc.
By Gregory Morrison, SVP & CIO, Cox Enterprises
By Alberto Ruocco, CIO, American Electric Power
By Sam Lamonica, CIO & VP Information Systems, Rosendin...
By Sven Gerjets, SVP-IT, DIRECTV
By Marie Blake, EVP & CCO, BankUnited
By Lowell Gilvin, Chief Process Officer, Jabil
By Walter Carvalho, VP & Corporate CIO, Carnival Corporation
By Mary Alice Annecharico, SVP & CIO, Henry Ford Health System
By Bernd Schlotter, President of Services, Unify
By Bob Fecteau, CIO, SAIC
By Jason Alan Snyder, CTO, Momentum Worldwide
By Jim Whitehurst, CEO, Red Hat
By Marc Jones, Distinguished Engineer, IBM Cloud Infrastructure