61% of cyber attacks by hackers each year involve small to medium-sized businesses. At least half of those companies won’t even know the attack has happened until it’s too late.
IT system security and data protection have always been important. But as the statistics highlight, the need to focus attention on security is increasing for companies of all sizes. Larger firms have the resources to spend heavily on the issue, but what can a small or mid-sized firm do?
In this episode, I share 3 Inexpensive ideas to make your network more secure. I’ll also share a brief overview of my firms capabilities in this ever evolving area.
9. The Many Types of Security Threats
Antivirus, malware scanners, threat detection…
there is no one solution to all these threats:
• Malware
• Spyware
• Adware
• Phishing
• Data Theft
• Ransonware
• Viruses
• Password Hacking
• Vulnerability Scanners
• Packet Sniffers
10. • Over 500,000 businesses* have been
hit by ransomware
• Once hit, the only way to get rid of it
is to pay the ransom
• Criminals are constantly developing
new techniques to attack businesses
*BBC
CryptoWall + Ransomware
The Growing Enemy of Businesses
11. Two Pieces of Equal Importance
Viruses, malware and ransomware
are only one piece of the risk
to your business!
Losing your data can
be just as harmful!
12. • 3 out of 4 companies had disaster recovery
failures, resulting in:
• Loss of mission critical applications
• Loss of critical files
• Expected days of datacenter downtime
• 60% of companies didn’t have a full scale
data recovery plan. 40% of companies said
their data recovery solution didn’t work.
• 60% of companies that lose data will shut
down within 6 months.
Sources: Disaster Preparedness Council, FEMA
Data Loss Statistics
13. • Fires
• Floods
• Earthquakes
• Hurricanes
• Tornadoes
• Data Corruption
• Hardware / System
Malfunction
• Software Corruption
• Human Error
• Brownouts
• Theft
• Ransomware
• Malware
Types of Data Loss Threats
14. A few good ideas to strengthen security
1. Strong Passwords – how to create an easy to remember
strong password
○ Password phrase
■ Eat chocolate and ice cream 1 time a day!
■ Ecaic1tad!
○ Slightly different passwords for each login
■ Facebook = Ecaic1tad!FB
■ Corp network = CEcaic1tad!
2. Enforce strong passwords on the network
■ Reset every 90 days
■ Can’t be the same as the previous 3 passwords
■ Most business networks have this ability w/o any
additional technology
15. A few good ideas to strengthen security
3. Local user / Local Admin
○ Daily use account - does not have permission to install
software on the local machine
○ Local Admin user - has permission to install software
on the local machine
16. Don’t assume others know
what to do
● Top 5 reasons for employee underperformance: 50% of
the time it’s that they don’t know what to do. (include
link to show)
● Train your team to think before they link or click.
○ Awareness is a strong defense against social
engineering and phishing.
17. Businesses should have a plan that addresses
these solutions. Plan should include:
• End User Support
• Messaging Protection
• Endpoint Security
• Patching
• Security Information
Event Monitoring (SIEM)
Business plans must also address risk of data loss!
A comprehensive plan includes:
• Vulnerability Scanning
• Website Security
• Backup and Recovery
• Mobile Devices
and BYOD
• Compliance
Management
18. Want to go deeper?
● 4 Keys to Protecting Your Business
● Down the free eBook at
www.jasonclause.com/security
● Reach out to me on LinkedIn or email me
at jason@jasonclause.com