10 Low-cost security strategies for your business

By Diana DiBello

If your personal or business security strategy is little more than a set of colorful sticky-notes with passwords attached to your screen, you are in big trouble!

In today's environment, we should know better than to leave passwords and other sensitive information in plain sight - making our systems vulnerable to attack. Yet, in a time when we're doing more with less and concentrating on other issues, we may forget some of the basics associated with secure systems.

Do you create passwords with a combination of letters and numbers, instead of using your middle name? Are you performing regular backups? Do you store them in a safe place, such as an offsite location?

Sure, these are basic strategies, but you really can't be too cautious. According to a recent survey from Bigfoot Interactive that ran in a story in Online Media Daily, 55 percent of online users said they had been infected with spyware. That's more than 50 percent of respondents, and while this is only one statistic among many, it should signal an alarm that we must remain careful.

The bottom line is that you can't take too many precautions, but let's get back to basics. Here are 10 low-cost security strategies for you and your business.

  1. Update Your Operating Systems and Software. Hopefully, you're not still running Windows 95, not because it's out of date, but because it's no longer supported by Microsoft. It's always a good idea to install the latest version of any operating system or software program because of the built-in improvements vendors put into newer versions. And, be sure to install and test updates before installing them on a network.
  2. Turn on Automatic Updates. Whether you operate in Windows or Mac OX, always turn on automatic updates within your system. This is the best, most accurate way to ensure you're receiving the updates you need. QuickBooks users, for example, have options to turn on automatic updates. Interrupting your day with updates can be a time-hindrance, but it's better than facing the prospect of outdated software. Microsoft recommends its free Windows Server Update Services and Microsoft Security Notification Service.
  3. Use Anti-Virus and Anti-Malware Programs. What better way to fight a virus than to have software installed to combat it before it does any damage to your system? There are many products to choose from, so select the one(s) that are easy to operate and update. Some are built-in to an operating system. Windows Vista, for example, includes Microsoft Defender, a program that runs in real time.
  4. Install a Firewall. When was the last time you checked to see if your firewall was turned on? If you can't remember, then it's been too long. First, consider a host-based or personal firewall that protects an individual system, such as a stand-alone PC. Second, consider a perimeter firewall that will handle all traffic on the network.
  5. Use Directory Services. A directory is commonly used for managing users and desktops on a local network. It puts all information in one place on your network so that the information can be easily reviewed. This includes information on groups, individuals, networked computers, file storage and printers.
  6. "E" is for Encryption. The best way to protect sensitive or valuable information is through encryption, and it does not have to cost a lot of money. The keys are authentication and confidentiality. Office 2007, for example, includes encryption technologies so that users can digitally sign documents for authentication and password-protect documents for confidentiality.
  7. Use a VPN for Secure Remote Access. These days, who isn't working remotely - and who doesn't need access to their files? A Virtual Private Network solves most security issues associated with remote access due to the encryption associated with logging into a system.
  8. Protect Your Wireless Network. No matter where you go, you still find wireless networks that are not protected! This leaves the owners vulnerable to attacks that could have easily been prevented by installing a secure wireless network. Consult your router documentation on how to set up a secure network, or search online for how-to instructions.
  9. Make Users More Aware. Not enough can be said about training your staff so they can be much more aware of security. A smarter workforce is a more secure workforce. Consider discussing security during staff meetings, or bring in outside experts to provide a third-party perspective.
  10. Set up Your Policies. A secure system is based on a thorough set of rules and limitations as to what users can do. For example, do you allow your staff to download any program they want? Consider writing a set of policies that clearly outline this and other areas. Not only will you have given the staff clear guidelines; they now have a reference point to begin understanding sound security.

Implementing and maintaining security in your systems and processes shouldn't be a chore - and it doesn't have to be expensive. You'll want to investigate and try various approaches that make sense to your own systems. Remember: Nothing is a cookie-cutter solution. However, doing anything more than what you're doing now is a step in a secure direction.

About the author
Diana DiBello is director of product development for SpeedTax, a provider of sales tax compliance software solutions. She previously was a senior manager in the state and local tax services group for Grant Thornton. Contact her at dianad@speedtax.com.
Sources include a white paper from Microsoft, "Security Strategies for the Midsize Business."

You may like these other stories...

In the old days, we used to tape down receipts from our travels and submit them to accounts payable. But that was before remote employees who may live in a different city from the home office. And of course, there's all...
In 2011, electrical services and technology provider Parsons Electric in Minneapolis, Minn., decided to take its accounting to the cloud. Monica Ross, the company's director of strategic projects, talked with AWEB about...
Event Date: July 24, 2014, 2 pm ET In this presentation Excel expert David Ringstrom, CPA revisits the Excel feature you should be using, but probably aren't. The Table feature offers the ability to both boost the...

Upcoming CPE Webinars

Jul 16
Hand off work to others with finesse and success. Kristen Rampe, CPA will share how to ensure delegated work is properly handled from start to finish in this content-rich one hour webinar.
Jul 17
This webcast will cover the preparation of the statement of cash flows and focus on accounting and disclosure policies for other important issues described below.
Jul 23
We can’t deny a great divide exists between the expectations and workplace needs of Baby Boomers and Millennials. To create thriving organizational performance, we need to shift the way in which we groom future leaders.
Jul 24
In this presentation Excel expert David Ringstrom, CPA revisits the Excel feature you should be using, but probably aren't. The Table feature offers the ability to both boost the integrity of your spreadsheets, but reduce maintenance as well.