Issue link: http://palletcentral.uberflip.com/i/1194984
palletcentral.com PalletCentral • November-December 2019 37 rules for email, web browsing, mobile devices and social networks. Don't forget the basics, such as physically unplugging the machine from the network and notifying the admin of any suspicious emails, activity or lost devices. Monitor Personal Devices As a small business, you may not provide devices like laptops, tablets, and smartphones for employees to use at home, so they use personal devices to access company data. If this is the case, you need to create policies that allow your network administrator to install monitoring software, push automatic security updates, and call for regular password changes. You should have a plan to protect your business if employees put your network at risk while using their personal devices. Protect against viruses, spyware, malware, and attacks Make sure that not only are each of your business's computers equipped with antivirus software and antispyware but that you update them regularly. There are many options of software readily available online from a variety of vendors. It's a good rule of thumb to configure your software to install updates automatically. Secure your networks Safeguard your Internet connection by using a firewall and encrypting information. If you have a Wi-Fi network, make sure it is secure and hidden. Password protect access to the router. Backup, Backup, Backup Regularly backup the data on all computers. Critical data includes word processing documents, electronic spreadsheets, databases, financial files, human resources files, and accounts receivable/ payable files. Backup data automatically if possible, or at least weekly, and store the copies either offsite or on the cloud. Have a Plan & Policies in Place You need to work with an experienced IT consultant or in-house IT staff on a plan for data breach. Because such attacks are so prevalent, it's best to prepare for the worst. Having a backup in place could help to get your business back up and running in the event of data loss. Establish policies on how employees should handle and protect personally identifiable information and other sensitive data. Clearly outline the consequences of violating your business's cybersecurity policies.