BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Five Tips to Enhance Your Organization's Cybersecurity

From: Audrey McNeil <audrey () riskbasedsecurity com>
Date: Mon, 2 Mar 2015 19:16:32 -0700
http://www.bizjournals.com/boston/feature/5-things/2015/03/five-tips-to-enhance-your-organizations.html

Cybersecurity is a hot discussion topic around the boardroom and a growing
concern for many businesses. What can you do to help mitigate the risks of
a cyberattack in your company?

1. IT risk assessment—Understand your network. Evaluate your IT
infrastructure to identify security gaps against industry recommended
guidelines and develop a remediation roadmap based on your appetite for
risk.

2. Network vulnerability testing—Trust but verify. Are you confident the
controls you have implemented are protecting your network and corporate
secrets? Have your vulnerabilities identified through network testing
before someone else does this for you at 3 a.m and steals your information.

3. Vendor management—Out of sight is not out of mind. Know the policies and
practices of organizations you provide with your corporate data.
Responsibility and liability don't end once the information handoff has
occurred.

4. Security awareness training—Secure the human. Social engineering through
phone calls or phishing emails is an easy way to gain access to your
network. Why steal the password when I can just ask for it? Employees
should understand the risks associated with common everyday activities such
as installing software, using free Wi-Fi networks and exploring the
Internet.

5. Incident response plan—What do we do? Develop and test your game plan
before an incident occurs. Identify key internal team members and qualified
external vendors ahead of time.

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss
For inquiries regarding use or licensing of data, e-mail
        sales () riskbasedsecurity com 

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
YourCISO is an affordable SaaS solution that provides a comprehensive information security program that ensures focus 
on the right security.  If you need security help or want to provide real risk reduction for your clients contact us!
Previous By Date Next
Previous By Thread Next

Current thread: