How to keep your business secure during a crisis
At the time of writing this the official figures for confirmed Coronavirus cases is 45,204; 4,985 people have recovered and 1,116 have died. These are scary figures and show the scale of the epidemic that is currently unfolding in China.
Will this enter the realms of being a Pandemic? So far, it looks as though the spread of this disease is being adequately contained in places outside of China where it has landed and hopefully, this will remain the case.
That being said however, a bit of planning for this kind of thing would be sensible. Even if Coronavirus is not the pandemic to devastate the modern world, it does make sense to have a plan in place should you want your business to function when your offices are uninhabited and your staff are all stuck at home for whatever reason.
It is now a legal requirement to have such things as a disaster recovery plan and a business continuity plan in place so this exercise is not really one that should sit on a to-do list gathering dust. You have to work out how to get your people onto your systems remotely and in a safe manner so as to protect your business. Do not assume that just because you are in crisis-mode that dropping your network security “will be fine for a little while” because the criminals out in the world will be attempting to “make hay whilst the sun shines”. They will know that companies like yours may be compromised during such a global (or even regional) incident and they will be trying to take advantage of this by looking for softer targets.
OK, let me assume that I now have your attention and that we are on the same page; what can your business do to avoid being a soft target in troubled times? There are several options which we can look more closely at:
- Ensure that your staff have been trained with KnowBe4 so that they can spot when they are being socially engineered, phished etc. Such training will work just as well at home as it does in the office;
- Provide ISL Online so that your staff are not processing your data at home but rather are accessing everything remotely on their work PCs which still sit on your network, behind all the protection that you normally have in place;
- Use bluedog SOC on your network so that if any malicious / suspicious activity takes place, you get to find out about quickly so that you can take whatever action is required;
- Protect all of your email traffic with the Email Laundry. This way regardless of what devices your staff are using to pick up their email, you know that it has been scanned and is therefore much safer than normal;
- This is the common sense one that most businesses seem to forget about: Ensure that the computers that your staff use at home are safe. To put this simply, add the home PCs onto your business Heimdal license. Even during normal operation of your business, why on Earth would it seem like a good idea to have potential breaches taking place in your employees’ homes? You may not even know how much damage such a breach can be until it is too late; just ensure that they all have Heimdal suite installed and you can sleep that bit easier at night. After all, do you emphatically know that members of your staff have not worked on anything confidential on their home PCs?
When thinking about making these plans, remember to include your supply chain. What is the point of having everything ticking along like a well-oiled machine only for it to not matter because your supply chain is not as well organised as you? Consider setting up regular audits of your supply chain for various security issues including disaster recovery and business continuity.
I hope that this little article has provided you with some food for thought and that you at least draw up a plan of how your business could cope, even if running only a bare minimum of activities, during a crisis. If you would like some professional advice from your local Brigantia Partner then please email firstname.lastname@example.org or call Brigantia on 020 3358 0090 to be put in touch.