Webinar Recap: Proactively Protecting Your Business Against Cyber Threat
On November 16th, we hosted Bulletproof, Solutions Specialist, Trevor Flynn for an in depth discussion on Proactively Protecting Your Business Against Cyber Threats.
Bulletproof, a GLI company, has a lot going on these days. After 16 years in the cybersecurity business, they have grown to 150 people, across five Service Divisions, six Branches and have recently consolidated their Managed Security Services into a new state-of-the-art Security Operations Center (SOC), located in Fredericton, New Brunswick.
The most important step in strengthening the cybersecurity posture of any organization of any size is to address the vulnerabilities as soon as possible. Don’t put it off. Many breaches can take up to 140 days to detect. Wondering where to begin? Consider these five points Trevor addressed:
1. Educate, engage and empower your people in cyber-awareness. This investment can turn your weakest link into your strongest asset. Giving employees the tools they need to do their job well, empowers them to make good decisions and a path of recourse to deal with potential problems.
2. Change passwords, as Trevor explains, a hacker doesn’t have to break in, if they can get in the front door. Keeping passwords unique to each user, device and system is critical to protecting corporate assets. The right time to change a password is not necessarily every three months but whenever it seems likely credentials have been compromised.
3. Patch. In figures provided by Bulletproof, 46% of compromised systems showed no evidence of malware whereas 99.9 percent of exploited vulnerabilities had patches available for more than a year, but they were not applied. If you wouldn’t think twice about the necessity of fixing a broken window, why waste valuable time before patching vulnerability in your systems?
4. Know how to use the tools and permissions you have. For small and medium enterprise (SME), the variety of tools and information available to help streamline and facilitate efforts to strengthen cybersecurity posture can be dizzying. Trevor encourages clients to choose a level of protection that suits the business. The right tools can help “filter the noise” and streamline efforts to secure assets but taking the time to understand how to leverage those tools is essential. Consider consulting an expert even if it is just for a systems health check conducted by a trusted third party.
5. “Assume Breach Mindset” – For SMEs this can be especially challenging. Planning ahead can mean the difference between losing a little and losing everything. “Organizations need to start adopting an “assume the breach mindset” This mindset, as Trevor explains, begins at the baseline assumption that breaches are happening. If there were a data breach in your organization, how would that be communicated and with whom? What are your responsibilities? Discuss what a breach might look like. Define individual roles in your response team and have an IT security provider in your list of contacts.
Ce webinaire se donnera en anglais seulement. Cette présentation est disponible en Français sur demande. (firstname.lastname@example.org)
CyberNB is a Special Operating Agency of Opportunities NB.