The Verse - Volume 34
return

Tech Tips - Business Computer Security Checklist

Computers are critical in every business environment today and security is one of the big issues facing business owners. Here is a six step checklist you can review with your current computer support staff to make sure that your environment is safe and secure.

1. Protect Your Desktops and Laptops
Hackers like to find and exploit bugs and loopholes in popular software products. Some do it for money, some to make a statement, some simply to cause trouble. And they can cause trouble - exposing customer credit card numbers on a Web site or stealing passwords in a computer. The impact on a business can be fatal.

If you are serious about security, there are three things you must do: 1) keep your software up to date; 2) protect against viruses and 3) set up a firewall.

2. Keep Your Data Safe
Just imagine walking into your office one morning and discovering all of your sales records, customer contact information and order history had disappeared. How long would it take you to recover? How much disruption and delay would occur? What would it cost you?

Data loss can and does happen. It can result from hardware failure, flood, fire, security breach - or just an accidental deletion of an important file. Whatever the cause, taking precautions to reduce the impact is like an insurance policy, enabling your business to get back up and running quickly.

Implementing a regular backup procedure is a simple way to safeguard critical business data. Using full and incremental backups that are tested on a frequent basis will ensure that data can be recovered. The more automated the processes the better. Also, set specific permissions by user so users only have access to what they need. This avoids accidental deletion or changes to critical data.

3. Use the Internet Safely
If your business doesn't have a policy on internet usage, it should. Though the web can be an incredibly useful workplace tool, it can also cause significant workplace havoc that can result in lost productivity. Setting some rules protects your business … and your employees. Web pages contain programs that are usually innocent and sometimes helpful - for instance, animations and pop-up menus. But there are questionable, even malicious Web sites that have their own agenda, and it's not always in your best interests. When you're surfing the web, site operators can identify your computer on the internet, tell which page you came from, use cookies to profile you and install spyware on your computer - all without your knowledge. Destructive worms can also enter your system through your web browser. Regularly scan your PCs for spyware, adware, worms and trojans.

4. Protect Your Network
Nobody likes to think the worst — that around every corner there is someone snooping into your business affairs. But if your company operates either a wired or wireless network, and has information you would like to keep confidential, then a little paranoia will serve you well.

a. Use a firewall.
A firewall controls access your network. It can block internet intruders from probing at the data on your private network. And it can control what your employees can access outside of your network.

b. Use strong passwords
Most small businesses use passwords to authenticate identity — whether on computers or cash registers or alarm systems. Though there are more sophisticated authentication systems, such as smart cards and fingerprint or iris scans, passwords are most common because they are easy to use. But they are also easily misused. Hackers have automated tools that help them come up with simple passwords in minutes.

c. Use wireless security features.
Wireless networks use a radio link instead of cables to connect computers. As a result, anyone within radio range can theoretically listen in or transmit data on the network. Freely available tools allow intruders to "sniff" for insecure networks. There are security features built into Wi-Fi products, but manufacturers often turn them off by default because it makes the network easier to set up. If you use wireless networking, make sure you turn them on and use the configurable encryption and access control features that will make your network more secure.

d. Close unnecessary network ports.
Network ports enable communication between client computers and servers. To strengthen your network's security and thwart unauthorized access, you should close unused or unnecessary network ports by using dedicated firewalls, host-based firewalls or Internet Protocol Security filters.

5. Protect Your Servers
Your servers are your network's command center. If they become compromised, your entire network is at risk. To protect your business, protect your servers. Keep your servers in a safe place. Businesses must make sure that their servers are not vulnerable to physical calamities. Locate these machines in a secure, well-ventilated room, not in a hallway or under a desk where someone might inadvertently kick or spill coffee on them. Or mischievously tinker with them. Your server room should have no windows and a single door you can lock. Server cases should also be locked to prevent tampering with internal components. Know which employees have keys to the server room.

6. Manage Desktops and Laptops from the Server
Without procedures in place, all the security measures you take to safeguard your business may be unintentionally jeopardized by users. A lack of stringent administrative procedures can unwittingly sabotage your security investment, reversing the changes you've made or inadvertently introducing new risks. Users may not stay current on updates and patches, they may download unauthorized and potentially harmful software and they may not be vigilant about unauthorized access to data on their computers.

One solution is to manage desktop PCs and laptops from your server. Not only will this approach reduce the risk that your security measures can be sabotaged, but it can also represent a significant savings of time and money due to the efficiencies you gain through proper installation and timely updates.

Monitoring: You should also consider utilizing 24x7 monitoring solutions that are available. If there is unauthorized access on a PC, or if there is a system failure of some sort on an individual machine, this can be detected immediately through the monitoring capabilities available in a managed PC/laptop environment.

As always, if you have questions, please call the purple guys at Versent at 816-221-3900 or email at info@purpleguys.com and "We can do IT for you."