Cyber criminals can strike anyone, anytime, anywhere. The U.S. Small Business Administration claims that small employers are becoming an attractive target for cyber criminals because they have valuable customer date, provide access to larger networks such as supply chains, and often lack the resources or personnel to focus on cybersecurity.
Despite this trend, new research from Nationwide Insurance Company released during National Cyber Security Month reveals that most small-business owners (78 percent) still don’t have a cyberattack response plan. It’s crucial to be proactive and have a plan in place to reduce cyber attacks for your business.
1. Protect the perimeter
- Guard your physical perimeter to prevent hackers from accessing sensitive date and your company’s computer network.
- Determine if your Wi-Fi signal and computer network are accessible from outside your facility and what protections you need to keep out unauthorized users.
2. Train employees
- Educate your team because employees are your company’s first line of defense against cyber criminals.
3. Build a firewall
- Make sure that your system firewall is up to date and able to block connections that are used to hack into your system and deliver viruses.
4. Update software regularly
- Install and regularly update spyware, anti-virus and malware software to help prevent and detect any of those from affecting your computers.
- Be sure that all company-owned devices have the most up-to-date security software. If your company allows employees to access company information on their personal electronic devices, have a policy that requires security software with regular updates on those devices as well.
5. Change passwords often
- Use stronger passwords of 8-10 characters that include letters, numbers and special characters; change those passwords regularly on your network (at least every 90 days), and require all employees to change their passwords regularly as well.
6. Secure your networks
- Secure your Wi-Fi networks to prevent hackers from accessing your servers or using your internet connection without your knowledge.
7. Monitor social networks
- Set social network profiles to private and check security settings; also, be mindful of what information you post online.
8. Encrypt data
- Encrypt your most sensitive data, make a backup and store it in a fireproof safe or off-site; use a dedicated computer for all sensitive information.
- Be sure you understand what data you control that is sensitive. It can include any employee data or proprietary information.
9. Confirm your vendor’s security
- Carefully select online computing services, because any information you share with them can be compromised by their system.
- Require a system security and regular updates as part of your contract with any vendor for computer services as well as any suppliers that might have access to your system.
10. Buy the right insurance
- Ask your trusted Advisor about what type of cyber insurance your business needs to cover losses in case of a breach or fraud.
