Seven Best Practices To Keep Your Critical Data Safe

Key data should reside on servers rather than desktop workstations. But wherever your data is, backups should be automated to insure that are always executed. This is a key protectuion against Ransomware attacks.

Identify the data that you just can't live without and imagine potential breaches which would be very costly. Consider low-cost / high-impact protection procedures.

Users don't need to learn about hacking technology, cyber exploits, and the latest software configurations and patches. You may have IT staff and security personnel who need those courses, and there are many sources for this training too.

Use a "pen tester" or "white hat hacker" to periodically test your information defenses. On a budget, use a single tester rather than hiring an outside firm and the more costly "red team" and "blue team" services.

Web servers typically face the internet, and are most exposed to attacks. Your internal devices and internal servers hold critical operating data and should be on a separate network that is not reachable from the puiblic internet. Use "subnets" or separate locations to help make this happen.

Build a relationship with a consultant, based on trust and continuous improvement. Pen testing, SAT training, and overall assessments are key areas where an outsider can be valuable.

Improving your data protection posture and resiliance (your ability to recover from an attack or breach) is an ongoing responsibility, not a one-time project. Establish a culture of good cybersecurity practices and keep it going.