Introduction
We have decided to put together a one-page resource so that anyone in business or the not-for-profit space can get information about how they can protect their organisation from a cyber event.
The following section are designed to give you a reference point so that you know where you are and what direction you need to go to ensure that you are not going to be the next stat on the six o'clock news
The basics of Business Security and cybersecurity
These are the basics that every organisation should implement as a basic security situation. Download my first book - The Basics of Business Information Security
Passwords:
Your access to every site and service on the internet should have a unique password that is complex (anything on the keyboard) and larger than 14 characters. If that is to complex get yourself a password manager.
Anti Virus:
Get one although they will not stop everything they will protect your devices at a rudimentary level.
Firewall:
Every operating system has a firewall. They are designed to allow you out to the internet but to stop everything coming in. Do not turn it off.
Awareness training:
Implement an awareness training process for all staff and team members.
The Essential 8 - First steps to securing your business
Arming your organization with "The Essential 8" isn't just a best practice—it's a necessity in today's digital frontier.
This ebook provides readers with actionable insights, real-world examples, and tools to bolster their defenses and stand tall against cyber adversaries.
Here is a basic introduction to the essential 8
Patch operating systems
Regular patching acts as a primary shield against vulnerabilities that cybercriminals exploit
Patch applications
Prevent potential breaches by closing software loopholes.
2 Factor authentication
The effectiveness of 2FA in adding an additional verification step, making unauthorized access exceedingly challenging.
Backup
In the event of any data loss or ransomware attack, a well-executed recovery plan ensures business continuity.
System hardening
Bolster the resilience of operating systems by removing unnecessary functionalities, ensuring tighter security configurations, and reducing potential attack vectors.
Application whitelisting
This wards off potentially harmful software and ensures that only vetted applications operate within the system.
Scripting
Manage and monitor scripts, preventing malicious or unintentional alterations.
Administrators
By limiting administrative privileges, businesses can reduce the potential avenues of internal and external threats.
Download the free "CareMIT guide to implementing the essential 8 cybersecurity strategies
Next steps to better business security and cybersecurity
Implementing the NIST Cybersecurity Framework (CSF) for a small business after setting up the Essential 8 strategies can seem daunting, but it's manageable if approached methodically.
The NIST CSF provides a detailed set of best practices designed to help organizations manage and reduce cybersecurity risks.
The following will help
Free online cybersecurity audit
Free weekly online webinar – every Friday 1030 – 1130
https://www.eventbrite.com.au/e/228040815217
https://us02web.zoom.us/meeting/register/tZUtd-qrpzkjGNQOoJusu9B_BMz8Xq_Uw-IE
Free 30-minute chat – Bring us a problem and we will help you sort it out -
https://calendly.com/caremit-discovery/30_minute_discovery_meeting
Your A.C.T.I.O.N. plan
10 benefits of implementing a decent cyber security program like the cybersecurity ACTION plan.
Security is an important component of doing business in today's business world.
The attitude that you have in productivity or security makes it harder for management in an organisation to understand why it is so important.
Here are 10 reasons that security can enhance productivity
⚔️ Protecting sensitive information: A cyber security program helps protect sensitive information such as financial data, personal information, and intellectual property.
⚔️ Complying with regulations: Many industries are required to comply with various regulations that mandate the implementation of certain cyber security measures.
⚔️ Reducing the risk of data breaches: A cyber security program helps reduce the risk of data breaches by implementing measures such as secure passwords, firewall protection, and regular updates.
⚔️ Protecting against cyber attacks: Cyber security measures can help protect against a variety of cyber attacks, including malware, phishing attacks, and ransomware.
⚔️ Maintaining customer trust: Customers trust companies that take their data security seriously. Implementing a cyber security program can help an organization maintain the trust of its customers.
⚔️ Protecting company reputation: A data breach or cyber attack can damage an organization's reputation and lead to a loss of business.
⚔️ Enhancing employee productivity: Cybersecurity measures can help employees work more efficiently by protecting against cyber threats and minimizing downtime due to cyber attacks.
⚔️ Avoiding financial losses: Cyber attacks can result in financial losses for an organization, including costs associated with recovering from the attack, repairing damage, and lost productivity.
⚔️ Increasing competitiveness: In today's digital age, having strong cyber security measures in place is increasingly important for businesses.
⚔️ Reducing insurance premiums: Many insurance companies offer discounts to organizations that have implemented robust cyber security measures.