If you use computers in your business, then the answer is YES!
What is CyberSecurity?
Just as a home security system helps to protect your home, CyberSecurity helps to protect your electronic computer data. When your data resides on many computers, servers, laptops, and even in the ‘cloud’, the complexities of protecting that data multiply.
The next layer is controlling physical access. This is where user names and passwords come in. Passwords should ALWAYS be complex – simple passwords are a cinch to hack. Consider using a password manager. Read more about password managers here
Thirdly, secure your computer network. Shore up your routers, upgrade your firewall, and lock down outside access. Your office server must never be left unlocked or ‘logged on’. Always keep your guest WiFi separate from your office WiFi – and both must be password protected.
Why take CyberSecurity Seriously?
- Everything is connected to the internet. And that’s where the threat exists.
Ransomware is up 400% in 2016. With one click, hackers lock your data and demand a ransom. Once they have your money, they might unlock your files. If you’re a medical practice, a ransomware infection IS a HIPAA breach!
- Our most vulnerable information is on our computers. From financial records and accounting details to client names and patient health information – our computers and servers are a treasure trove of valuable data.
- Hacks are consistent. Hackers are attacking organizations across all industries, and of all sizes.
Where do you start?
- Continual and frequent staff training and awareness of cybersecurity threats.
- Always stay current with Operating System (MS Windows) and application patches (updates). Utilizing an automated solution from your IT company is the best approach.
- Establish a solid Cyber Risk Management Program – from the top of the company down.
- Install a professional-grade Internet Security software on ALL internet-connected devices (workstations, servers, tablets, smartphones, laptops, etc.).
- Engage in computer monitoring and management. Professional IT Companies can alert you if suspicious activity occurs.
- Frequent and consistent phishing awareness training.