How To Stop The Hackers: 8 Tips For Improving Cyber Resilience

[Audrey McNeil <audrey () riskbasedsecurity com>]

http://www.misco.co.uk/blog/news/02593/how-to-stop-the-hackers-8-tips-for-improving-cyber-resilience

Last year saw hackers get the better of some of the world's biggest
retailers and banks, and 2015 will most probably present the same level of
threat. Here are some ways you can protect your IT assets from cyber
attacks, courtesy of CS Online.

1. Sometimes the most basic oversight can leave a business open to cyber
attack. Make sure you implement basic cyber hygiene, such as patching
vulnerable systems - this can help mitigate the majority of known attack
vectors.

2. Know exactly what's on your network. Make an inventory and document the
type of device and where it's located; also make a note of the assigned
owner of your organisation's IT assets. Make the inventory part of your
written policy and ensure it's reviewed by senior executives at least
annually.

3. Protect your systems with key security settings: once you've identified
all the hardware and applications you have running, choose a well-known and
trusted secure configuration baseline for each type of hardware and
application.

4. Take control. This means implementing a process to manage identities and
credentials for authorised users and devices, and limiting access to
information assets and associated facilities to those users, processes or
devices for authorised purposes only. And manage remote access closely, as
well as physical access to assets

5. Patching maintains the confidentiality, integrity and availability of
systems and information. Continually review what patches, updates and
revisions are required and apply them in a timely and systematic process to
your apps, software and operating systems.

6. The threat of cyber attack is constant, so remain vigilant at all times.
Keep reviewing your security and assess each individual priority to ensure
that nothing falls through the cracks.

7. Make sure staff understand their responsibilities as regards cyber
security and ensure that they follow cyber hygiene best practices.

8. Collaborate with other organisations - cyber defence is a team effort,
and working alongside both the public and private sectors is critical.

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss
For inquiries regarding use or licensing of data, e-mail
        sales () riskbasedsecurity com 

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
YourCISO is an affordable SaaS solution that provides a comprehensive information security program that ensures focus 
on the right security.  If you need security help or want to provide real risk reduction for your clients contact us!