How to Protect Business From Cyber Attack

Balaji BandiSECURITY

How to Protect Business From Cyber Attack

 

There are serveral way you can protect your business from Cyber Attack, but here is some high level you can start with.

Security Assessment :

it is very important to establish a baseline and close exiting vulnerabilities.

keep this process regularly

Spam Email :

Secure your email,  Most attack originate from email. user awareness every important.

conduct user awareness for the malicious emails or spam suspect emails need to be reported immediately to concern authority and delete with out opening any attachments and website url in the email content.

Computer Update :

Patching is regular process and updating the Operating system will help business to protect from cyber attack.

Password :

Do not share passwords with any one, make sure password entered in secure manner and password policy will be strict.

Two-Factor Authentication :

Use Two-Factor or Multi-Factor Authentication mechanism possible way.

Especially accessing banking sites, corporate network from public network.

Mobile Device Security :

Now a days we use most of the work/ day to day work from mobile devices, so keep secure all the handheld devices, keep the device update os as per the vendor recommendation or industry recommendations.

Backup :

Always backup the data, in case any compromise or data corruption or data compromised we can restore the data.

Encryption :

When ever possible or where ever possible use  Encryption for the files and other area where you can protect the data.

Firewall :

Turn on IDS/ IPS Features in the Firewall so you have visibility on the network and parse the logs to SIEM for analysis.

Web Content Security / Proxy

Deploy Web proxy for http/https decrypt the web traffic analysis, so you can stop malware and suspicious traffic from web content.

End point protection :

Deploy End point protection so you can protect from malware, virus, ransomware attacks, local device protection

SIEM  :

Use big data analysis in real time, and display in dashboard for security team for immediate action.

Security Awareness :

Train and give more information to users how to protect data, and identify spam emails and where to report, what is the first action take place when they come across, malicious emails or web content.

 

happy laaaabiiiiiiing !