You can be on Entrepreneur’s cover!

Going Beyond Passwords: 4 Ways to Keep Your Company's Information Safe Beyond requiring complex passwords, here are four digital security measures that should be part of your company.

By Gary Davis

entrepreneur daily

Opinions expressed by Entrepreneur contributors are their own.

Shutterstock

Q: Besides having employees use passwords, what are other ways to keep your company safe?

A: A great question about digital security for entrepreneurs is: Where do I start? For most early stage or startup companies, it's everything you can do just to have your vision play out with minimal distractions. That said, the last thing you want is to have your business sullied by being a victim of an attack.

Over the past year we've seen a dramatic increase in ransomware, a type of malware that freezes certain files on computers and smartphones then requires a ransom to unlock the files, targeting small companies. Being a victim of ransomware can have a crippling effect on your business and your fledging reputation.

Related: 6 Reasons Smart Small Business Owners Invest In Security

Beyond requiring complex passwords and that they be changed, at a minimum, once every quarter, the top four digital security measures that should be part of your company include the following:

1. Install anti-virus on every PC and smartphone and keep it current.

This may seem obvious, but I'm surprised at how often I hear about companies that do not have active anti-virus software installed. Most anti-virus software includes a firewall capability which should be turned on as well. Having both active is the first line of defense against bad actors targeting your business.

2. Teach employees how to determine if an email is part of a phishing or spear phishing campaign.

Phishing or spear phishing is when scammers use email to elicit sensitive information to be used for malicious activities. This year we have seen several instances in which employees received an email from scammer posing as their CEO requesting the employee's user name and password. It was surprising how many employees sent that information. Last year at Intel we launched a phishing quiz. More than 40,000 people took the quiz and 97 percent got at least one wrong.

Related: Here's How to Build a Strong Security Team to Keep Your Company Safe and Sound

In the most recent Verizon Data Breach Investigation Report, phishing was a top attack vector. Find tips here on how to determine if an email is part of a phishing attack.

3. Have all employees install and use a web reputation tool when browsing.

Implanting malicious software into a website to infect devices that visit the website is a popular technique used by cybercriminals. We refer to this type of attack as a "drive-by download." There are several free tools available to everyone that will alert them if they are about to go to a website that is known to contain malicious code.

4. Implement a comprehensive backup program.

This, much like installing AV on every device, should be apparent, but again I'm surprised by how often companies lose everything when they are the victim of a cyberattack because they don't have its critical data backed up. You have two choices here. You can use a cloud-based storage option or you can use on premise storage. My preference is to use a physical hard drive that I keep under lock and key when not actively backing up my systems. I also back up everything at least weekly. There are several options for both cloud and on premise backup systems that have very flexible scheduling capabilities. Choose which works best for your business and be disciplined about ensuring everyone adheres to your backup policy.

I envision a day when being able to demonstrate your security posture will be table stakes for businesses or consumers who choose to use your product or service. You will be much further ahead by taking these simple steps today than have your security posture evolve as your business grows.

Related: 12 Tips to Protect Your Company Website From Hackers

Gary Davis

Chief Consumer Security Evangelist at Intel

Gary Davis is Intel's chief consumer security evangelist. He works closely to drive strategic alignment of products with the needs of the security space, as well as overseeing Intel Security online safety education to educate businesses and consumers by distilling complex security topics into easily understandable and actionable advice. During his more than five years at Intel Security, he has held leadership roles in the consumer and enterprise divisions where he has helped shape various product portfolios and strategic direction along with advocating for cybersecurity education.

Want to be an Entrepreneur Leadership Network contributor? Apply now to join.

Editor's Pick

Business News

From Tom Brady to Kevin O'Leary – See Who Lost Big in the Wake of the FTX Crypto Collapse

The crash exposed an $8 billion hole in FTX's accounts, leaving investors and customers scrambling to recoup their funds.

Business News

Mark Zuckerberg Says This CEO Is the 'Taylor Swift' of Tech

Meta's CEO posed with Nvidia CEO Jensen Huang on Instagram Wednesday.

Business News

This Highly-Debated Piece of Cinematic History Just Sold For Over $700,000 at Auction

The wood panel from "Titanic" is often mistaken as a door. Either way, he couldn't have fit. (Sorry.)

Money & Finance

5 Simple Wealth-Building Tips For This Generation's Forward-Thinkers

Explore practical finance tips for young professionals striving to overcome economic challenges.

Leadership

What We Have to Gain By Talking About Grief and Loss At Work

I lost my husband to cancer during Covid — here's how it changed how I lead at work.