No one wants to deal with a data breach, particularly when it involves sensitive company or employee information.
Recent cybersecurity events, like the breaches at Marriott and Equifax, have shown that no organization is completely safe from attack.
“Cyber’s no longer a hide-able topic,” RedSeal CEO Ray Rothrock has said. “These congressional hearings where Wells Fargo and Equifax and others were on the stand, those were pretty visible and they were talked about for quite a while. That’s how you make the public aware. You can’t hide it.”
Organizations may not be able to hide data breaches if they happen, but there are several things you can do to keep your company’s information secure.
Here are five tips to keeping your company information secure:
- Know where your data is. Most companies have an internal server for their documents, but many have also started to keep some data in the cloud. In fact, it has been estimated that 83 percent of company data will be kept in the cloud by 2020. It is important that organizations are aware of what data is being kept in which location. This is called data-mapping helps a company understand who is handling the information.
- Keep important data internally. An organization should have a policy of keeping tight security on its most important information, according to digital security expert Thierry LeVasseur. “This means keeping vital documents on an internal server and securing that server with passwords and up-to-date security software,” Thierry LeVasseur In addition, ensure that emails are encrypted and that all software is updated regularly.
- Understand your cloud security. Keeping company documents and information in the cloud can be particularly appealing in the mobile age. It can help keep team members on the same track by being able to share documents and make edits remotely. However, each provider will have its own security regime. Your IT department should be aware of what is being done in the cloud to keep company information secure.
- Build a data safe culture. Organizations should have policies about data use and protection. These can include encouraging employees to turn their screens off if they leave their desks, not leaving files or information lying around and even robust shredding requirements. By demonstrating data security is valued by your company, employees will start to take it more seriously.
- Have tight control over data access. One of the best ways that a company can ensure the safety of its information is through password protection and restricted access. While this requires more work by IT staff, keeping the number of employees who are able to see the data to a minimum is key. This helps prevent public access to your data and also reduces the opportunity that employees have to steal company information.