Tag: cybersecurity 2023

  • Zero trust or zero effort, how does your businesses security stack measure up?

    Zero trust or zero effort, how does your businesses security stack measure up?

    Have you been working on strengthening your cyber security stack in your business or crossing your fingers and hoping for the best? How much protection is really enough?

    There are a lot of remedies for improving cyber security out there, but which ones present the best value for your business, and what constitutes a “zero trust” environment?

    If you’re just starting out, these 10 items will greatly improve your business’s cyber security safety in a short amount of time (we call these “best practices”):

    1. Use multi-factor authentication. This one is obvious, but we still see it not being employed regularly. Multi-factor authentication is generally extremely easy to enable (often times just a checkbox) and it greatly improves the safety of that account. When we’re talking about accounts like your business email, or your banking account it’s a no brainer.
    2. Use a password manager. This is another easy one to employ but people still ignore it, or even worse they use the password manager built into their browser. We’re not saying that’s completely wrong, especially if you’ve started using stronger passwords because of it. It’s still a good idea, however, to use a password manager that’s not directly connected to your system. Often times the same password or biometric you use to log onto your computer is the one used to unlock your browsers password database, so if someone has breached the device all those passwords will be available to them too.
    3. Employ Biometrics. Speaking of biometrics, they can be an improvement over passwords when it comes to a physical devices security. Especially for mobile devices, most of us access our work emails, banking accounts, etc. through our phones. It’s very easy to lose a phone, so making that phone unusable to whoever finds it (or has taken it) is a good idea.
    4. Don’t give everyone admin privileges. Not every employee needs all the keys to your kingdom, limit admin access only to those who really need it so if you do have a breach the damage can be limited as well. This is a key component of a zero trust environment (which we describe in the chart below).
    5. Communicate your goals and train your employees. Loop employees into your increased cyber security efforts and provide training, no one wants to be responsible for a cyber-attack in their workplace but without training employees can become unknowing and unwilling threat vectors.
    6. Monitor network activity. Now we’re starting to get into the more challenging topics, monitoring your network activity can be a very effective way of noticing early when something is amiss. There are tools out there that can do this monitoring for you and provide warnings if suspicious behavior is detected (like a device being logged in after hours when it never usually is).
    7. Use encryption. It’s pretty easy to use encryption in email or with sensitive documents (again often just a checkbox) but it’s an effective way to make sure sensitive data doesn’t fall into the wrong hands.
    8. Use backups. Again, in the same vein of protecting your data having automatic backups will greatly increase your chances of recovering after a cyber-attack. Especially if those backups were stored offsite (such as cloud backups). We wrote an article on the best ways to manage your OneDrive storage (which is included in your Microsoft 365 subscription) here.
    9. Regularly patch your devices. Many of your vendors actually provide security protections for you via their patches, which more often than not are addressing specific security concerns that have been identified. Patching costs nothing but your time and the benefits are ten-fold compared to the costs of a security breach in your business.
    10. Have a security audit performed. The best way to address the holes in your security plan is to have a reputable IT company perform a security audit. Valley Techlogic is a provider of these audits in the Central Valley and you can request a consultation here.

    Performing these ten activities in your business will greatly improve your cybersecurity effectiveness across the board, but if you’ve reached the bottom of this article and have realized you do all of these you may be wondering what’s next? Or perhaps you’ve heard of zero trust but aren’t sure what that entails, here are the key components to having a zero-trust cybersecurity environment:

    We address ALL of these topics in our new book, Cyber Security Essentials, which covers all the components of a cybersecurity framework and how to implement them in your business. You can see a preview of the book in the video below.

    [youtube https://youtu.be/jlBAoq4tLNc]

    Looking for more to read? We suggest these other articles from our site.

    This article was powered by Valley Techlogic, an IT service provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.

  • New Year’s resolutions for business tech in 2023

    New Year’s resolutions for business tech in 2023

    The new year is upon us and with that comes the opportunity to make needed changes to outdated technology within your business.

    Our clients are usually split on when they want to make changes – for some it’s that mad dash towards the end of the year and for others it’s the fresh mindset that comes after the 1st of January. There really is no wrong answer when it comes to a tech refresh and any move you make will have lasting benefits that increased security protection and less chance of an outage bringing your office to a standstill.

    This can mean hardware or software upgrades but usually means both, and with Windows Server 2012’s end-of-life date occurring in October of this year we anticipate there will be many trying to replace their primary office server before that time. If you have a server current running Windows Server 2012 it probably will also need to be replaced (keep in mind the 2012 reflects the year it came out, so even if you bought your server a few years later it will still be older than the 5 year recommended lifespan for most servers).

    We don’t want to only focus on servers though, here are a few other New Years technology resolutions you can make for 2023:

    1. Move away from software that has reached end-of-life or is no longer supported. Windows Server 2012 Isn’t the only operating system that has recently reached end-of-life, Windows 7 is also no longer supported by Microsoft. Even peripherals such as switches or networking gear such as routers can have end-of-life events and will no longer be updated by the manufacturers.
    2. On the same token, consider moving more to the cloud. More and more of our clients are moving away from traditional in office servers by switching to online storage. There can be an upfront cost to doing this but it’s still often less than purchasing a brand new server if your existing one is on the outs. As a bonus all future maintenance will then fall to your cloud provider.
    3. Increase your security measures in the New Year. There’s no better time than the beginning of the year to begin tackling cyber security measures you wanted to put in place last Year over year the risks continue to increase so why not begin 2023 knowing your business is safe from a cybersecurity attack?
    4. Again in the same realm, begin or strengthen employee training on technology topics. As your employees come back from the holidays why not implement short training measures (our tool takes just 15-20 minutes a week) that could drastically reduce your risk?
    5. Finally, don’t let fear of a recession slow your growth. You may be shying away from making hardware purchases due to fear of a recession, but if existing outdated hardware is already slowing your business down from the productivity level you hope to have not replacing it soon could do more harm than good.

    If you’re not sure where to start with any of these topics, we can help. We’re currently offering a 2-hour service call absolutely free.

    Here are a few ways we suggest using this service call to put your business in a better position in 2023:

    Click to view the full size version.

    If you would like to learn more about our free service call offer, or would like a consultation on our services you can book one here today.

    Looking for more to read? We suggest these other articles from our site.

    This article was powered by Valley Techlogic, an IT service provider in Atwater, CA. You can find more information at https://www.valleytechlogic.com/ or on Facebook at https://www.facebook.com/valleytechlogic/ . Follow us on Twitter at https://x.com/valleytechlogic.