Business Cyber Security Checklist

Sometimes it’s hard to know where to start when it comes to securing your small business from cyber threats. Below is a checklist of things you can do to help protect your business. Taking these steps can significantly reduce your cyber risk and prevent fraud or devastating attacks like ransomware. Work with your IT provider to adapt these suggestions into an action plan that fits your business needs.

Business cybersecurity checklist:

• Set up frequent/automated patching and updates.
• Install Antivirus or Endpoint protection for all your systems.
• Lock down your network perimeter with a firewall.
• Secure your wireless network with a strong password.
• Hide your wireless network’s SSID from public view.
• Eliminate guest/employee devices on your production network.
• Block non-business related web traffic.
• Enforce Multi-factor Authentication for your email.
• Turn on security scanning/sandboxing in your email.
• Limit your number of Domain Admins.
• Limit admin accounts from production use (don’t use admin for day-to-day tasks).
• Eliminate local admin access on all workstations.
• Require VPN for all remote access.
• Require MFA for all remote access.
• Train and test your users on phishing attacks.
• Establish daily backups with a combination of local, off-site, and offline locations.
• Implement dual control and out-of-band verifications for electronic funds transfers.
• Get cyber insurance to help if an incident does occur.