|
Information Security for Small Business. You know you need security, but you're not sure how much you should invest to get it. With so many security products on the market, it's hard to know which ones are really necessary.
Security is applied in layers from simple to complex.
When you drive a car, it is important that you wear a seat belt and that your brakes are in good working condition. In addition, we know that front air bags are pretty useful too.
Adding more safety are things like side curtain air bags, ABS brakes, and technologies that help prevent rollovers.
If you spend more, you can get things like rear view monitors, night vision systems, or OnStar that calls 911 when you've had a crash.
When you buy a car, you make a decision about the level of safety you are comfortable with, balanced with your budget. It's the same with security in your small business. Each layer adds more protection, but also adds complexity and expense.
And more important than anything is developing and following security rules. If you are a driver who consistently drives recklessly, how much of this matters at all?
It is not possible for a small business to implement a perfect security plan. It is possible to implement sufficient security so that malicious individuals will go elsewhere for an easier target.
So check out the Top 10 Basic Security Steps below. In future issues, we'll talk about adding more layers to your security plan.
Until next time,
|
|
Top 10 Basic Security Steps for Small Business
- Make sure every PC in your business is running anti-virus and anti-spyware software, and that it is configured to automatically install updates.
- Install and maintain a hardware firewall between your network and the Internet.
- Make sure every PC in your business is running a software firewall - the one in Windows Vista or Windows 7 is just fine. Make sure it is turned on and working.
- Keep your operating systems up-to-date and configure it to automatically install security updates on a daily basis. Remember, Windows Vista and Windows 7 are 62% less likely to be compromised than Windows XP.
- Make backup copies of important business data and information. Have a backup plan that covers frequency, testing, and rotating copies off site.
- Control physical access to your computers and network. Lock laptops when not in use. Be aware of who has access to your office, day or night.
- Make sure your wireless access point is secured and configured correctly.
- Train your employees about basic security principles. Set up and teach policies which describe how to handle and protect customer and other business data. Create a "culture of security" in your business.
- Setup separate user accounts for each employee on a computer. Make sure they do not have administrative privileges. Use good passwords.
- Limit employee access to data and information, and limit authority to install software. Unfortunately, the majority of security incidents occur from insiders - use good business practices to protect your information.
Kissel, Richard (2009) Small Business Information Security: The Fundamentals. U.S. Department of Commerce. |
|
Microsoft Online Services
Business Productivity Online Suite offers Exchange Online for email, Sharepoint Online for collaboration and sharing documents, Office Live Meeting Online, and Office Communication Online all for around $10 per month per seat.
This can be a good option for a new or small company that hasn't invested in a server and wants to centralize email and documents, with the added benefits of security and a promised 99.9% uptime.
email for more information. |
