Business IT Security
How secure are your business IT systems?
As businesses continue to rely more and more on IT systems, the need for fast, reliable and secure connections becomes crucial in preventing downtime and financial loss.
According to the Telstra Cybersecurity Report 2017, “In 2016, 59% of organisations in Australia detected a business interrupting breach on at least a monthly basis, twice as often as 2015.”
Unfortunately, IT security is one of the most overlooked aspects when it comes to running a small to medium business. Without a dedicated IT department, they are softer targets for hackers, cybercriminals and occasionally even employees looking to take advantage of any weak points in the system.
What can I do to improve my security?
Even with an endless budget, no system is completely safe from all cybersecurity threats. But there are steps you can take to improve your security without breaking the bank.
The first step is to identify what your business’s most sensitive or valuable data and systems are. You can then determine where they reside, who has access to them and how they are protected. This alone will give you an insight as to how well your business is protected.
Another simple thing you can do is to make sure you have strong passwords in place. A simple password like ‘Security’ can be cracked instantly with computer algorithms, but a passphrase like ‘ITakeSecuritySeriously’ would take up to 45 quintillion years to get past (according to www.howsecureismypassword.net).
Addressing the weakest link
It may come as a surprise to learn that the weakest link in your IT systems actually comes from your employees and anyone else who has physical or remote access to your network. Whether malicious or inadvertant, ‘insiders’ make up to 55% of all security breaches.
This can be a difficult and sometimes confronting realisation to make, but knowledge is power and there are things we can do to turn this particular threat into an asset. The most common way hackers try to get in to IT systems is by sending phishing emails, so by instilling a ‘human firewall’ culture in our staff we can avoid inadvertantly opening our business up to threats.
This also gives us an opportunity to educate our team as a whole, creating awareness and individual accountability when it comes to IT security. Knowing how to identify and recognise misleading websites, foreign executable files, phishing emails and other threats is an important step – creating an enviroment where staff understand the dangers of downloading programs and transferring data and money ad hoc is just as crucial.
If you’re unsure of where to start or have any questions when it comes to your business IT systems, feel free contact us for help.