The New Year is the perfect opportunity to strengthen your cybersecurity safeguards. With work and life moving increasingly online, it is important to protect yourself and your organization. Implement these 10 resolutions in 2022 to ensure you are being vigilant with your information to protect you and your organization from cyberthreats.
1. Think Before You Click
Beware of emails, texts or other promotions that seem off or encourage you to urgently click on links. Pay attention to the website’s URL. Malicious websites may look identical to a legitimate site, but the URL may use a variation in spelling or a different domain (e.g., .com versus .net).
2. Use a Password Manager
Using a password manager allows you to create randomized, complex, long passwords and save them in a safe place where you can easily access them when needed. Make sure you enforce multi-factor authentication on your password manager.
3. Keep Software Up-to-Date
By keeping your devices fully updated on the latest security software, you are using one of the best defenses against threats online. Don’t wait – update!
4. Implement Multi-Factor Authentication
Fortify your online accounts by enabling the strongest tools available, such as biometrics, security keys or a unique one-time code through an app on your mobile device. Focus on securing your external applications first.
5. Do Your Research
By being alert and aware online, you are maintaining a strong online posture and protecting yourself and your information. Read reviews beforehand and do research before downloading anything onto your computer. Always check with your IT department before installing applications to ensure they are sanctioned within your environment.
6. Have You Checked Your Backups?
Backups are critical for business continuity and disaster recovery. Ensure they are tested frequently and are isolated within the production environment. Don’t have your backups fall prey to a ransomware attack.
7. Keep Organization Confidential Information Safe by Not Posting Online
Organizations sometimes provide too much information online through job postings or social media posts. Careful balance needs to be found in informing the public, while also not providing information that can be used to target your organization.
8. Dust Off your Security Awareness Program
Implement security awareness testing through simulated phishing and vishing tests. Review these results with your information security governance committees to understand security awareness risks. Enforce frequent security awareness to reinforce the importance that everyone is part of the organization’s cybersecurity efforts.
9. Build a Better Cybersecurity Program
Ensure your cybersecurity program follows best practices. Ensure compliance with frameworks like the National Institute of Standards and Technology (NIST) Cybersecurity Framework or the Center for Internet Security (CIS) Critical Controls.
10. Join MS-ISAC
Joining the Multi-State Information Sharing and Analysis Center (MS-ISAC) provides services such as threat research, cybersecurity alerts and configuration benchmarks. MS-ISAC also provides zero cost security operation center services for all state, local, tribal and territory governments. Learn more at MS-ISAC’s website.
By implementing these 10 resolutions, you and your organization will be much better protected against cyberattacks in the New Year. Share these tips with your coworkers, friends and family to ensure that you are all better protected for the future.