How to protect the Corporate Network

Importance of Cybersecurity is on the rise. The corporates are more technologically dependent than ever before and there is no sign that this trend will slow down. Data leaks that could result in identity theft are now publicly posted on social media or on the dark web. Here are some controls which will help us to prevent the cyber-crimes.

Restrict Employee Access to Data & Information

Restricting the access to the corporate data lowers the chance for human error, which is the number-one information security threat. Employees should have limited access to the systems and information they need to perform their task.

If an employee leaves the organization, take the necessary actions immediately, including deleting the accounts from all systems and collecting company ID badges and keys.

Patch the Operating Systems & Software

Don't ignore operating system updates, these updates often include fixes of vulnerabilities and enhanced security features

Every app can open the door to a cyber-attack, regularly patch and update all software on every device used by the employees.

Always check for updates when purchasing a new computer or installing a new software system.

Activate Software and Hardware Firewalls

Firewalls can stop the hackers and stop employees from browsing inappropriate websites. Install and update firewall systems on corporate networks and devices. Even if you use a cloud service provider (CSP) or a virtual private network (VPN), you may also want to install an intrusion detection/prevention system (IDPS) to provide a greater level of protection. Make sure to enable logs and alerts to identify inappropriate behavior.

Secure Wireless Access Points & Networks

For securing wireless networking, best practices for hardening must be used:

Change the default password on new devices Set the wireless access point so that it does not broadcast its service set identifier (SSID) Use Wi-Fi Protected Access 2 (WPA2), with the Advanced Encryption Standard (AES) for encryption Do not use WEP (Wired-Equivalent Privacy). Disable guest access to corporate network, make sure it is separated from corporate network

Set up Web & Email Filters

Use email and web browser filters to prevent unnecessary access. Prevent employees from visiting sites that are frequently associated with cybersecurity threats. It only takes one employee to visit the wrong website to unintentionally download malware onto the company systems.

Use Encryption for Sensitive Information

Use full-disk encryption to protect all your systems. Save a copy of the encryption key in a secure location separate from your stored backups. Never send the password or key in the same email as the encrypted document. Give it to them via phone or some other method.

Dispose of system & Media Safely

Before donating or trashing old computers, all valuable hard drive information must be wiped out using the DoD 5220.22-M method. Delete any sensitive business or personal data from the storage device. Then destroy these items or shred them. Destroy sensitive paper information using a shredder.

Train every new employee to protect valuable data and have them sign information security policy.