The Federal Trade Commission has spent years providing businesses with guidance and advice concerning their security. Now, this guidance has converted into enforceable mandates.
In short, your business needs to have systems and protections in place—not plans—in order to abide by last month’s executive order that focuses on the prevention of cybercrime and fraud. Let’s touch on what needs to be accomplished in order for you to do so.
We will be the first to admit it: we are obsessed with security.
In an era where cybercriminals are more sophisticated and persistent than ever, that obsession is a necessity. Modern security requires a fundamental shift in mindset: you cannot implicitly trust anyone. Not outside hackers, and—uncomfortable as it may be—not even the people inside your organization.
This trust-no-one approach is the foundation of Zero-Trust Security.
As we stand on the threshold of a new year, it’s worth noting that the term "cybersecurity" didn't even enter the common lexicon until the late 1980s. Before that, we just called it "computer security"—mostly involving locking the server room door and hoping nobody guessed the password was "admin."
Fast forward to today, and the game has changed entirely. "Hoping for the best" is no longer a viable business plan. As you prep your resolutions, it’s time to hit the ground running with a cybersecurity posture that is as modern as the threats we face—a goal that will require training for your entire team.
While you’re busy shoring up your cybersecurity measures, it’s worth asking what you’re doing about physical security breaches. Considering the risk they pose to your employees, data, and equipment, you shouldn’t leave this issue unaddressed for your business. Any small business owner should strive for the peace of mind that physical security can bring about.
How many employees do you have who keep your company’s passwords on sticky notes stuck to their monitors? This simple, seemingly benign trick could be putting your business at risk. After all, if you can see the password on a sticky note, so too can others who happen to be wandering around the office—including potential threat actors.
| No events |
