You defend your home, you defend your car, and it’s important you do the same for your network and all the resources it encompasses.
How to defend your network? The most basic defensive tools include anti-virus and anti-malware software, which should be present on any device that can be connected to the Internet. This means on your company assets as well as those introduced by staff (this means a careful review of your BYOD policy). And as good as your defenses are, keep in mind they are against known bad actors, not upcoming unknowns; a more comprehensive strategy we be needed to protect against the new wave of zero-day threats—that’s for another post.
Look for tools that prevent your end users from installing anything that is not a known good. By removing administrative rights and privileges from the end user you can provide a tremendous defense. By allowing only the corporate standard set by IT security; removing the ability to plug in any device to a USB, HDMI or other available ports on the system; preventing the end user from browsing to any website they desire; preventing users from sending any file they want via unsecured email; and by faithfully teaching each user in the manner they need to be taught, you can make huge strides toward true protection.
Interested in learning more? Download our new brief, The Common Sense Approach to Cybersecurity.