Make Your MSP More Cyber Aware

We talk a lot about security here at LogMeIn, especially with our recent partnership with Kaspersky Lab. And, given that National Cyber Security Awareness Month (NSCAM) just wrapped up, it’s an ideal time to refresh some of your company’s security practices.

As a small-business owner or an IT lead for a larger MSP, you’re maintaining a large amount of technology, devices, users, and much more. But there are a few areas where you can make quick improvements to ensure you’re doing everything you can to protect your customer’s information. Check out this list of items you can address fairly quickly and make quick improvements to your security:

Networks

From WiFi to VPN, make sure your customer’s networks have strong, secure and protected passwords. Enable strong encryption (WPA2 and AES), and require authentication as needed. For the WiFi, set up multiple networks for each use case–one for employees, one for guests, one for IT, etc.– to help eliminate disruption and security breaches impacting the entire company. Also, consider the physical security of the network equipment–is it stored in the open where anyone can access, or is it stored away hidden from potential theft?

Mobile Devices

It’s likely that many employees are using more than just their desktop or laptop to access company systems and information. Make sure those devices are secure as possible, including requiring a passcode that enables you to wipe the device in case it is lost. On top of the passcode, use finger swipe authentication for additional security.

POS Devices

Your job as a service provider likely goes beyond computers, and extends into file servers, routers and POS devices. Those machines should be just as secure as others with strong, secure passwords that are changed frequently, if not automatically, and enabled with both user and admin access. You’ll also want to set up anti-virus protection on these machines; it’s likely they don’t receive as frequent maintenance as a laptop or desktop computer, so anti-virus monitoring is critical to ensuring the machine is free from malware and threats.

File Storage

Whenever you’re using a cloud-based file storage and sharing solution, you can enable authentication for those user accounts, as well. And, if possible, set up application-level encryption to protect that data. You can also choose to restrict the locations and devices where data and files stored in the company account can be stored so you always know where that data is going.

Passwords

Our friends at LastPass have done a great job at highlighting the importance of good password practices, not just at home but at work, as well. The three key tenants that your company should adopt is secure, unique passwords for each account; use of two-factor authentication; and use of a password. Start with employee education on secure password practices, and take steps within your team to roll out 2FA.