Pages
Events
Whitepapers
Whether it's the latest wave of hacker attacks on companies, the latest cyberattacks on politicians or data theft from social network operators, the topic of IT security makes the headlines almost daily. The General Data Protection Regulation (GDPR) has once again tightened the legal requirements in the area of cyber security. Here we give you 7 tips for more IT security in your company.
1. develop a strategy for more IT security in the company
IT security for companies is not rocket science. Catalogue in advance which IT security devices and solutions you already have and assess how well they are suited to warding off cyberattacks. What is the status of rights management and internal and external threats? Determine which risks are consciously accepted and how much should be spent on security measures. After the analysis, clarify budgetary and personnel issues. In this context, some companies rely on special task forces or appoint a Chief Information Security Officer - CISO for short.
2 Raise awareness of IT security in the company
One of the most important points in the security strategy is to increase employees' awareness of the topic of IT security for companies. Strengthen employees' knowledge and skills through regular training and familiarise them with the correct use of IT systems. Where are the dangers and how can employees counter them or, ideally, avoid them? Develop company-wide security guidelines that include all compliance and other legal aspects.
3. use secure passwords
Time and again, rankings of the most frequently used passwords in Germany can be found on the internet, including classics such as "123", "hello" or "password". Australian IT security researcher Troy Hunt's "Have I Been Pwned?" service can be used to check whether an email address is part of known major data leaks.
Just a few components can increase the security of a password enormously. Among other things, the Hasso Plattner Institute advises the use of passwords longer than 15 characters and the use of all character classes. However, words from the dictionary and identical or similar passwords across different services should not be used. The use of two-factor authentication is also recommended.
4. data backup
Whether it's a fire, a blackmail Trojan or a theft, important documents can be destroyed more quickly than expected. That's why regular data backups are the be-all and end-all in every IT department. Above all, business-critical data must be protected. Data backups should always be stored in a different location where they are secure.
5. e-mail dispatch
Most employees come into contact with emails on a daily basis. That's why it's crucial to explain which senders or email attachments employees can trust and which emails they should delete immediately. Under no circumstances should attachments be opened blindly. Encryption is another important aspect. Enquiries via social networks should also be treated with great caution.
7. virus protection and up-to-dateness
Basically a matter of course, but unfortunately all too often neglected: virus protection, operating system and programmes should always be up to date. In order to protect systems and data as effectively as possible, new updates should be installed immediately. Specialised solutions help companies to automate this process.
BLOG
SOAR - Security Orchestration Automation Responses
Learn more about IT security in this blog article.
Es scheint, als wären Sie auf nicht auf der gewünschten Sprachversion dieser Website gelandet. Möchten Sie wechseln?