3 Simple Tips and Tricks for Enterprise Security

CMI – Keeping your Enterprise Secure

Data breaches have become so ubiquitous that you do not really need to read the Ponemon Institute 2015¹ study to know that data breaches are expensive and becoming ever more so.  From a tech perspective, there are a few basic inexpensive steps we can take to make the potential breach just a little more difficult.

First, when you install a new piece of equipment, disable the default user accounts and create user accounts for only those users who need access, or use active directory or Lightweight directory access protocol (LDAP) to control use. LDAP integration, while initially more complicated to configure, certainly makes account maintenance much easier since passwords can be updated from a single management console.

Next, take advantage of new security features. Most storage devices and operating systems today allow users to encrypt hard drives. This is either a free feature or very inexpensive. It would be a shame to compromise your security by having data at rest unencrypted, when it is so easy to ensure that the data is unreadable.

Lastly, keep your firmware and device operating systems up-to-date. Don’t allow yourself to be an easy target for a newly remedied exploit by not taking advantage of updating your firmware. Most vendors allow you to subscribe to notifications so you are aware of new fixes as they are available. While updating equipment may seem daunting, it really has become much easier and most updates require no downtime. One of the most frustrating parts of my job is finding that I cannot access the WebUI of a piece of equipment with a current browser because that device has never been updated. Don’t allow your company to become a data breach victim because you didn’t keep your equipment firmware or OS current.

Disabling default user accounts, utilizing preexisting security features like encryption and keeping your firmware / devise operating systems up-to-date are three simple ways to protect your enterprise.  If you need help with any of these items, give CMI a call, we’ll be happy to assist or take care of it for you. We do these fixes all the time so we understand the intricacies of compatibility and how to best upgrade while limiting risk and downtime.

¹Ponemon Institute LLC, 2015 Cost of Data Breach Study: Global Analysis, May 2015