When it comes to data security, there aren’t any ‘one-rule-fits-all’ scenarios. Every business is different, and every business handles its data in different ways. However, there are a few key areas that everyone should pay attention to, regardless of the size of their business.
Make sure you have AV software running and keep it updated. There is no excuse not to have it. Windows 10 comes with its own free AV software.
Backup / recovery
If your data is valuable you should have a regular backup. You can never backup too often, but make sure you keep any backups secure. Encrypt where possible and keep drives/tapes locked up. Rotate backups so failed ones don’t wipe you out.
Secure network / firewall
Make sure your network is secure. Firewalls are configured appropriately. Change any default router passwords. Secure Wifi passwords.
Make sure anything that can have a password, does! All passwords should be 7 characters or more. Change frequently. Don’t use the same password for everything.
Make sure Windows updates are done on a regular basis. Update all software on all devices.
If you have a team working for you, make sure they know what they can and can’t do. Educate them on basic I.T. common-sense. Don’t presume all staff have any common-sense! Opening attachments; web-surfing; installing free apps; etc. could all mean big trouble for the security of your data and potentially put your business at risk.
Limit staff access
Only give staff access to data they need. Stop them installing software that you haven’t approved. Make sure their phones/notebooks/personal devices are secure before they connect to work email or data. Immediately lock down accounts when staff leave.
For more guidance with your IT security, contact Dave Hardy of Five Computing, one of our Firm Foundation mentors.