BreachExchange mailing list archives
Five Tips to Enhance Your Organization's Cybersecurity
From: Audrey McNeil <audrey () riskbasedsecurity com>
Date: Mon, 2 Mar 2015 19:16:32 -0700
http://www.bizjournals.com/boston/feature/5-things/2015/03/five-tips-to-enhance-your-organizations.html Cybersecurity is a hot discussion topic around the boardroom and a growing concern for many businesses. What can you do to help mitigate the risks of a cyberattack in your company? 1. IT risk assessment—Understand your network. Evaluate your IT infrastructure to identify security gaps against industry recommended guidelines and develop a remediation roadmap based on your appetite for risk. 2. Network vulnerability testing—Trust but verify. Are you confident the controls you have implemented are protecting your network and corporate secrets? Have your vulnerabilities identified through network testing before someone else does this for you at 3 a.m and steals your information. 3. Vendor management—Out of sight is not out of mind. Know the policies and practices of organizations you provide with your corporate data. Responsibility and liability don't end once the information handoff has occurred. 4. Security awareness training—Secure the human. Social engineering through phone calls or phishing emails is an easy way to gain access to your network. Why steal the password when I can just ask for it? Employees should understand the risks associated with common everyday activities such as installing software, using free Wi-Fi networks and exploring the Internet. 5. Incident response plan—What do we do? Develop and test your game plan before an incident occurs. Identify key internal team members and qualified external vendors ahead of time.
_______________________________________________ Dataloss Mailing List (dataloss () datalossdb org) Archived at http://seclists.org/dataloss/ Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss For inquiries regarding use or licensing of data, e-mail sales () riskbasedsecurity com Supporters: Risk Based Security (http://www.riskbasedsecurity.com/) YourCISO is an affordable SaaS solution that provides a comprehensive information security program that ensures focus on the right security. If you need security help or want to provide real risk reduction for your clients contact us!
Current thread:
- Five Tips to Enhance Your Organization's Cybersecurity Audrey McNeil (Mar 10)