Ten Things You Can Do To Protect Your Enterprise

This means maintaining an inventory of your IT assets and keeping them up to date; disabling unused ports and services; and implementing antivirus/anti-malware/anti-phishing technologies to prevent, detect, and mitigate malware, including ransomware.

During a cyberattack, the mean time to inventory, detect, and respond are three important metrics that can impact the breach costs for your organization.

Everyone on a team should understand their roles and responsibilities for responding to a cyberattack.

This will demonstrate to employees that vulnerabilities arise and pose a threat to the entire organization.

The best example of this is a phishing email—fraudulent messages containing spam links or attachments.

MFA adds an additional layer of security around sites containing sensitive information and makes it more difficult for unauthorized people to log in as the account holder.

Keep high-level protected data (e.g., credit card and health information) off your workstation, laptop, or mobile devices, and securely remove sensitive data files from your system when they are no longer needed. In addition, always use encryption when storing or transmitting sensitive data.

Regularly review what accounts are active on your operating systems and devices. If you don’t recognize the account, or if they have not logged in for a long time, disable or remove them.

Keep your devices locked so no one else can use them. If you keep protected data on a flash drive or external hard drive, make sure these devices are encrypted and locked up as well.

If you are a victim of a security incident, the only guaranteed way to repair your computer is to erase and reinstall the system.