Security Is the Core of the SMB Network
There seems to be the confidence shared by small and medium enterprises that their organization will never face a critical security breach. If I had a dime for every SME owner or decision maker who refused a potential security threat, I would be able to buy a yacht.
In general, network security can be categorized as either physical or virtual. One of the best security document I’ve ever seen written by Richard Kissel for the National Institute of Standards and Technology, a division of U.S. Department of Commerce. In it, Kissel explained an important consideration for any small and medium enterprises regardless of industry or specialization.
Physical security is fairly easy to address. Basically, include mitigation of any direct attempt to access the facilities and / or assets by a person or group. Steps to consider include clear doors locked, security cameras, security guards, etc., but the potential areas of compromise also includes some that are not so clear. Not ensure that non-employee personnel are on the up-and-up can be a huge oversight. Maybe someone has a finger in a light cleaning crew, or enough technical knowledge to penetrate your network. This is a perfect application for IP cameras. There are some all-purpose units such as APC NetBotz product line that combines environmental monitoring and intrusion with IP cameras to collect data for a specified period. Email alerts are available to staff or other designated who can then act upon the information provided.
You have locked your door, your personnel are trained, and adding a purpose-built IP “eye” just in case. So now you can cope with external threats, but where do you start? Most of the networks in the modern world is protected by a firewall. The term “firewall” is derived from the firefighting community, and in the world, a firewall is a barrier established to prevent the spread of fire. By the way, this is the basic function of a network firewall as the goal is to keep anything that can damage the infrastructure.
Other applications that function within the scope of the firewall including anti-virus/anti-malware content filtering, and intrusion prevention. The first is a way to reduce the infiltration of viruses, spyware, and the like via email or other traffic “friendly”. Content filtering to prevent employees and other users from surfing Web sites unrelated to business, which can pose potential risks, or is not appropriate in the subject. Intrusion Prevention is designed to fend off attacks from hackers and automated network or PC groups seeking to exploit a flaw or open a protected network.
While a firewall is the most common applications for security conscious organizations, should not be the only measure taken to keep the infrastructure secure. It is important to secure the entry points such as wireless networks, users PCs, and laptops. Wireless network must have the enhanced security protocol for access such as WPA (Wi-Fi Protected Access) or WEP (Wired-Equivalency Protocol).
Some security risks are borne out of user behavior indicate the need for best practice policies are in place with no investment in hardware and software. These include, but are not limited to:
• Require users to change passwords every 30 to 60 days
• Requires that the password contains uppercase letters, lowercase letters, at least one number, and at least one special character
• Restrict access to various areas of the network depends on the type of users and job functions
Because the training is very important, users should be required to sign acceptance of these guidelines and agreement to abide by them.
Have physical and virtual security are not enough. Routine maintenance on this device and software is essential to keeping it safe. The first step is to make sure all patches and firmware are up-to-date on the endpoint and the network core device. Second, the maintenance program should include verifiable, usable backup of all important data, and there are various different methods, from an old tape drive, to a new external hard drive, remote backup solutions for seamless electronics.
There have been documented cases of lost information due to poor practices in the documents and dispose of old hardware. I think back to the scene in the movie Animal House when some members of the Delta fraternity who rummaged through trash bins to find a copy of their midterm test.
SecurElement provides a comprehensive blend of essential hardware, software, technical personnel, support and maintenance through its innovative programs Managed Environment.
