An excellent firewall? Tick. Brilliant anti-virus software? Tick. You can have all these aspects of cyber security in top shape. Still, it's easy to forget - your employees (knowingly or unknowingly) could be the ones putting your data at risk.
That’s because, in years gone by, tasks could only be completed on site and by being in the office. Now we can do our work on tablets on the train, mobile phones at the bus stop or by taking office laptops home with us.
And without the right education and training, the risks are huge.
Using personal devices can pose a risk to business data
Of course, the work-from-anywhere revolution has opened up a whole new world of possibilities. We can send emails from our local coffee shop or update our company social media profiles from the apps on our mobile phones.
However, unchecked use of business data on personal devices can cause problems – as can using vulnerable public or partially open WiFi.
Phones and tablets are lightweight and portable – but that means they can be left behind, lost and just as easily fall into the hands of the wrong person.
Then there’s the fact that not everyone is an IT expert. Just because you can confidently say that company devices are installed with the very latest security patches doesn’t mean that the staff member who is running antiquated Android software will treat operational updates (if indeed these are still available) as a top priority.
With the proliferation of devices used to access a company network, there is the potential for your business data to be left exposed.
Email is a threat to security
As hackers grow ever more sophisticated, email is seen as an increasingly easy way to access information.
Seemingly legitimate pieces of communication may encourage the user to download an attachment hiding malicious code. This in turn may be used to spy on and monitor business activities or, in the case of ransomware, paralyse access to files until a sum of money is paid to the hacker.
Phishing occurs when a cyber criminal poses as a trustworthy sender in order to trick the recipient into revealing sensitive information.
It’s more common than you may think.
Simple mistakes cost money
Have you ever wondered what happened to that lost USB stick? We’ve all done it but last year, a dropped USB stick with no encryption or password protection resulted in a £120,000 fine for Heathrow Airport.
Whether through negligence, carelessness or a simple mistake, data loss costs time, money and brand reputation which can take years to recover.
How to limit risk
- Avoid using public WiFi to access company data if possible
- Educate employees about the dangers of opening email attachments
- Ensure all devices are installed with the latest security updates
- Encourage staff to be wary of clicking suspicious links or visiting non-secure websites
And as a last line of defence, regularly backing up company data ensures that information can be restored and recovered in the event of malicious attack or human error.
It's time to call for a Hero!
In this ever-changing technological world, the threat to businesses data and business continuity has never been greater.
We can carry out the following to make sure that your business is capable of handling anything:
- Business Impact Analysis
- Risk Assessment
- Business Continuity & Disaster Recovery strategy and planning
- Resilience design
- Emergency response management
- Business Continuity & Disaster Recovery rehearsal
Give us a call on 0845 6460146 or email firstname.lastname@example.org to see how we can help.