- 1). Implement a virus protection solution. There are many available, so do your research. Norton, McAfee, and AVG are among the most popular, but find the one that best meets your needs. Be sure that all of your computer systems are on the same version, and that updates are scheduled and implemented on a regular basis, whatever system you choose.
- 2). Install a firewall, at the very least at your network perimeter. Firewalls prevent unauthorized traffic from entering or leaving your network. You can configure rules for any applications or traffic types you wish to explicitly allow or deny on your network. Many direct attacks can be prevented by having a correctly installed and configured firewall.
- 3). Implement a secure user account policy. Many security incidents happen from the inside, either through malicious intent or ignorance of authorized users. Be sure that users and groups have only the system permissions they need to perform assigned tasks, and no more. Be sure that users are required to use secure passwords, and to change them periodically.
- 4). Design a disaster recovery plan which at least includes regular backups and offsite backup storage. In the event of any type of disaster, whether a malicious attack, system crash or even natural disasters, having your critical data backed up off site and a plan for getting back up and running can drastically eliminate downtime and reduce loss of revenue.
SHARE
