Posts Tagged Cybersecurity

Things To Include In Your Data Response Plan

Posted by centexitguy in Security on December 27, 2018

Making efforts to ensure organizational data security is of utmost importance in the wake of rising identity data breaches as well as cyber-attacks. It is extremely important to stay aware and alert of data breach incidents to minimize the effect and loss. Thus, in order to avoid the implications of data loss, one needs to design a data breach response plan.

Data Breach Response Plan acts as a guiding force to be followed when a data breach is discovered. If you already know what to do and how to do it; it would help in saving both time as well as efforts. Also, a well drafted strategy helps you avoid missteps at the time of crisis.

Setting Up A Response Plan

  • Define Breach: The first step is to define the term ‘breach’ i.e. deciding the type of incident that would initiate a response. For example, a phishing email might not have as much impact on the company as a ransomware attack. So, a business needs to categorize the serious issues and then work on the causes of disruption. There are many aspects that need to be monitored i.e. from compromise of private & confidential information to material loss such as distributed denial of service (DDoS).
  • Form The Response Team: There are numerous things that need to be done once a data breach is discovered. So, a good data response plan pre-sets the roles that everyone needs to perform. Every individual has a designated and defined task that he has to perform in the need of hour. Following are the teams who should be assigned the roles & responsibilities beforehand:
    • IT Security Team
    • Legal Team
    • Communication Team
    • Risk Management Team
    • Human Resource Team

    However, it is important to make sure that you vest this responsibility in your trusted employees who understand the complexity of the situation. Other factors such as size of the company, type of data breach etc. also govern the size and composition of response team.

  • Design Course Of Action For Every Scenario: The response plan should lay down a proper procedure of steps that need to be taken when a data breach occurs. Decide the course of action that needs to be followed for escalating the incident through the organization hierarchy once a data breach is discovered.
  • Setup A Follow-Up Procedure: Once you have been able to implement the plan to control a data breach, sit with your response team and review. Do a follow up and list down the problems faced by members, lessons learnt, etc.

For more information about IT Security, call Centex Technologies at (254) 213-4740.

, ,

No Comments

Cybersecurity Trends For 2019

Posted by centexitguy in Security on December 24, 2018

PDF Version: Cybersecurity-Trends-For-2019

, ,

No Comments

Tips For Educating Employees About Cybersecurity

Posted by centexitguy in Security on February 14, 2018

Computers and smart devices have replaced traditional methods of operation at the workplace. Internet has taken over the charge and our world has become a global village. While we have been able to leverage numerous benefits from the technological advancement, complete cybersecurity is still a major question.

Cyberattacks pose a major threat, however not all cyberattacks can be blamed on outsiders. Some of them might just be launched due to the negligence of your employees. Businesses are increasingly becoming vulnerable due to insider threats and the lax attitude of employees. So, in the wake of high ended cyberattacks and with the growing BYOD culture it has become vital to educate employees about cybersecurity.

Here we have listed some tips to educate employees about cybersecurity –

Educate Employees About Social Engineering Activities

Cognize your employees about social engineering attacks. Tell them not to click on suspicious links and emails from unknown sources. If there is something wary about a certain website, blog, link or email and the sender is unknown then it is best to ignore them.

Train Employees At Top Level Of Management

Cybercriminals generally target employees at top level of management who have access to sensitive information and the level of financial damage is greater. So it is important to impart additional training to CEO’S, CFO’S and other employees at that level of hierarchy to safeguard company’s confidential information.

Back To Basics

Provide training about rules for web browsing, email, social networks etc. Through this training they would be able to know the potential ways in which a cyberattack can be made and also take preventive measures to avoid the same. Also, regularly test their cyber security knowledge.

Tell Them What To do In Case They Come Across Something Suspicious

If there is something your employees feel wary of, then they should immediately contact the IT employees who are trained in handling them. Also they should notify the administrator if they come across a suspicious email, link or unusual activity. In case something major happens then unplug machine from the network.

Create A Formal Plan

Have a pre-listed set of instructions about what to do if an employee witnesses a cyberattack. The employees should be well trained to handle this situation and should know what to do if they are hacked. IT team should also draft a formal plan for cybersecurity training, This plan should be reviewed and updated every now and then keeping in mind the latest attacks and risks.

Also, important & confidential passwords as well as information should not be shared with all your employees. Practice the golden rule of giving limited access to only trusted employees. This will ensure that only those people have access to company’s sensitive information who actually need it for performing their operations.

Thus, it is extremely important to train employees about cybersecurity in order to prevent a cyberattack. For more information on IT Security, call Centex Technologies at (254) 213-4740.

,

No Comments