MicroPower Systems

Although every network is individual and requires detailed attention, there are some general tips for keeping it secure from unwanted intrusion. Whether you use Windows, Unix, or something else entirely, these are proven guidelines that have become known as “best practices” in the industry.

1. Have an official security policy. This seems obvious, but it’s very important that you have a formal statement of the security guidelines for your business, defining the roles of users at every level.
2. Keep patches updated. Firewalls are good, but they get out of date quickly as new threats are developed. Make sure to check regularly for new patches to battle these attacks.
3. Keep an inventory. If you don’t know what’s connected to your network, it’ll be easier for people to get inand more difficult for you to resolve. Have an accurate list of all hardware and software, and keep it updated.
4. Scan TCP/IP services regularly. Transmission Control Protocol and Internet Protocol together make up the Internet Protocol Suite. This is what allows networks to communicate over the internet, but it can get bogged down with extraneous protocols. Turn off services you’re not using, since they only provide another access point for attacks.
5. Have someone in charge. In today’s world, it’s necessary to have a full-time specialist at the forefront of your security team. Keep them educated with conferences and seminars, and make sure that your security is their only job.
6. Make sure your hardware is on. Some organizations install Intrusion Prevention Systems or other programs, but don’t configure it or, even worse, turn it off. This goes against the entire purpose of the IPS, so make sure someone in your organization knows how to use it.
7. Block suspicious e-mail attachments. The most prominent are .bas, .bat, .exe and .vbs.
8. Don’t be over-generous with system rights. The more people who have access, the more vulnerable your system will be. Stay safe by implementing the least amount of privilege.