Online businesses are susceptible to hacking and other cybersecurity threats. In fact, digital information theft is now a bigger threat than physical theft. This risk is not limited to sites that sell products and handle credit card information and it’s not just large companies that are targeted. 43% of cyber attacks target small firms. Protecting your company and its information needs to be a top priority. There are a number of safety measures you can take to ensure that your systems, data and site are as secure as possible.
- Train employees: Establish basic cyber security practices and policies for your company and train all employees regarding these. Inform employees regarding all security issues. Have a clear email and Internet use policy. Provide regular updates on new protocols and conduct regular training sessions to review IT security best practices. Create a culture of cybersecurity awareness.
- Secure your network, database and website: Install the latest anti-malware, antivirus, spam blockers, spyware detection and anti-ransomware software. Consider using a service like PayPal to process payments and protect customer information.
- Establish safe passwords and authentication practices: Data breaches often happen due to lost, stolen, weak or easy to guess passwords. Consider a Password Manager App, a software application designed to store and manage online credentials in an encrypted database. Multi-factor authentication that requires additional information to gain entry is another possibility. Change passwords every 3 months. Give employees access to only the specific data systems that they need for their jobs and require permission before installing any software. No one employee should have access to all data systems.
- Implement penetration testing: Penetration testing involves hacking into your own system to expose vulnerabilities in your host network and network devices. It identifies problematic access points in your system and provides suggestions for hardware and software improvements to upgrade your security.
- Provide firewall security: Install a firewall on all devices; a set of programs that prevent outsiders from accessing data on a private network. If employees work from home, ensure that their home systems are firewall protected. Firewalls give you the best chance of protecting your site before an attack is successful and they result in a faster and safer website. Many companies install internal firewalls to provide additional protection.
- Do private browsing with a VPN (virtual private network): Business owners/employees often use temporary workplaces and remote locations (coffee shop, airport, home office) increasing the risk of outsiders gaining access to business data. A VPN creates an encrypted connection between your computer and the remote private network making it necessary to have the key to decode information. Your data can’t be monitored, tracked, collected and stored.
- Create a mobile device action plan: Mobile devices (laptops, tablets, USB drives, smartphones) create a security risk for your company. Require employers to have password protection, encryption software, and a remote lock and wipe app.
- Encrypt your emails: Email messages and attachments are not a safe way to send confidential/sensitive information. Email encryption software ensures that only the sender and recipient can read the email/attachment thus preventing data breaches. The email contains a hyperlink to a website controlled by the sender.
- Subscribe to a Cloud service; an easy and affordable way to get data security from a company that specializes in handling security threats.
- Backup business data and information: Automatically backup critical data (word processing documents, electronic spreadsheets, databases, financial files, human resources files, accounts receivable/payable files) and store the copies offsite or in the cloud. Check your backup regularly to ensure that it is functioning correctly.
- Outsource your IT: A third-party IT provider hires and trains the best security people, gives you a set monthly fee, remotely manages your servers (24/7) and responds to emergencies.
- Dispose of data safely: When disposing of outdated computers, completely destroy the data on the hard drive by using a wiping/degaussing system and then physically destroying it with a hard-drive shredder or crusher.
- Secure your Wi-Fi network: Set up a wireless access point/router that is secure, encrypted and hidden. Password protect access to the router.
Today’s business is digitized and firms of every size face online security threats. Companies need to be increasingly vigilant about their online security. Take steps to protect your online privacy. Undertake proactive measures to protect your business computer, network, data, and website. Stay ahead of cyber attacks, cybercriminals and emerging trends in cybercrime. Create a cybersecurity strategy to protect your business, your customers and your data from growing cybersecurity threats. The Canadian Center for Cyber Security provides online training, checklists, and information specific to protect online businesses.
Want to learn more about cybersecurity? Need help with your digital marketing strategy? Call CAYK at (403) 456-0072 or email CARE@CAYK.CA. Allow us to be your very own marketing department! Connect with our tightly-knit team of knowledgeable digital-first consultants, each eager to help your business grow. Contact CAYK today.