The Ten IT Security Commandments
The Ten IT Security Commandments
1st Commandment (Take a Backup):
Always keep a fresh backup of your Important-Sensitive-Confidential Data, it is always advisable to schedule periodic backups for any important data, no need to cry for the spilled milk ops I mean the lost Data.
2nd Commandment (Use the Cloud):
The trend now is to move all the data to cloud, cloud can provide you with a basic level of backup (having a copy of your data on the cloud in case of having a broken local machines), also cloud can provide you with the flexibility of working from anywhere and anytime with no physical or time limitations.
3rd Commandment (Harden your PC):
Harden your newly installed machines by narrowing down the attack surface, hackers always search for any vulnerabilities (weak points) to attack your IT systems, so always plan how to harden your systems and make it harder to be attacked by blocking unneeded ports and services also enabling a reliable firewall can reduce the probability of successful attacks.
4th Commandment (Use endpoint protection apps):
Purchase and Install a strong endpoint protection app, nowadays it is mandatory to have an app to protect your machine from the daily attacks like (virus-malware-spam ware-ransomware-worm), so it is important to have a strong up to date app that can catch and stop most of the attacks your computer will face on daily basis.
5th Commandment (Use anti-spam):
If you have an email server or email service in your IT environment, it is very important to protect your email server with an anti-spam service to stop any intruder from manipulating your email system.
6th Commandment (Secure your mail system):
If you have an email service in your IT environment, it is mandatory to apply some tools like (SPF-dkim-dmarc) to protect yourself from any spoofing or impersonating attempts.
hackers nowadays can send emails pretending that they belong to your environment asking for sensitive data like (passwords or credit card details).
7th Commandment (do periodic training sessions):
Always train and guide your end-users for IT security awareness sessions, most of the companies spent
money to secure its IT systems but forget to immune their employees from being deceived.
employees are the weakest link in the chain, and most of the data leak cases are caused by the unaware employee.
8th Commandment (Use alternative email):
Secure all your public email accounts from being compromised by setting an alternative email address,
so in case you forget the password or your email address get compromised, you can restore it by asking to reset the password and send it to your alternative email address.
9th Commandment (Use 2fa):
As far as you can try to secure all your credentials with a 2fa (2 factor authentication), 2fa is an extra layer of security where you can link the access to your account with an approval or one time password from your mobile device or even a phone call, so that even if your credentials were compromised still the hacker need you to approve his access to the account.
large companies now like (Facebook-Microsoft-Yahoo and others) allow you to save your accounts with 2fa.
10th Commandment (Encrypt data):
Always try to keep your data encrypted, you have many examples for encryption but the most famous is encrypting the websites traffic (specially the payment gateways) with ssl certificate which encrypt all the traffic from and to the website,
also you can encrypt your computer hard disk using bit locker service so that if the hard disk is stolen or lost no one except you can access the data on it.
It is always our pleasure to help and support you,
whether you are a business user or a home user we are always ready to provide support.
you can leave your comment here or contact us on email: info@andi-tech.com
also, you can have a look at our services at https://andi-tech.com
thanks for your valuable time visiting our site.
