Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computer Security for Businesses

Published byJulián Benítez Poblete Modified over 5 years ago

Similar presentations

Presentation on theme: "Computer Security for Businesses"— Presentation transcript:

1 Computer Security for Businesses
Richard Ford, Ph.D., Florida Tech

2 Computer Security… Not just for Rocket Scientists!
Not really even just for Computer Scientists… In fact, securing your electronic infrastructure is very simple Smart “risk management” technique… like insurance And like insurance, doesn’t require you to be an actuary

3 Why me? Why not? Research is computer security at Florida Tech
Well-published 10 years of industry experience (IBM, Verio, Hiway Technologies…)

4 What if… All the electronic data in your business disappeared tomorrow? Okay, apart from getting the day off… Computers are a critical part of your business Accounts payable Customer contacts Work product

5 So… Computer Security is just like any other business risk: you have to manage it That means looking at it from a Risk Management perspective Balance the Cost of Prevention with the likely loss from the event E.g. Spending $100 on antivirus software to stop a possible loss of $10,000 which is quite likely is a Good Deal™ but spending $10,000 dollars on a penetration test to stop an unlikely event is not.

6 Dr. Ford’s 10 Rules for Security
These rules are tailored for small businesses But, from personal experience, I can tell you they work if you’re a Fortune 50 too!

7 Rule 0: Backup A backup is cheap and easy to do
Can use tapes, a server solution or even burn DVDs Don’t overwrite your backups! Keep your backups offsite Don’t *lose* your backups, it’s probably $$ in the bank to someone else Test your backups

8 Rule 1: Patch your machines
Even my mother does this (honest!) In Windows XP, can be done automatically Increases reliability and security Consider TCO and upgrade cost Prevents an attacker taking control via lots of different vectors

9 Rule 2: Use Antivirus Software
Viruses and Trojans and Worms (oh my!) Very common problem in business Can reduce a network to a bunch of colored wires in seconds Must must must keep antivirus software up to date Make sure your vendor deals with Spyware too!

10 Rule 3: Use a Firewall Not using a firewall is the electronic equivalent of leaving the door unlocked Anyone can attack your machines My machine gets attacked every hour not every day! Not necessarily expensive Most businesses don’t need to let much in

11 Rule 4: Be wary of Wireless
Wireless “leaks” from your building Hackers “wardrive” looking for open networks to “play with” Make sure you set it up right if you’re going to use it Check periodically to make sure you don’t have a wireless network you didn’t know about!

12 Rule 5: Watch your trash! Ah, the things we throw away
Sometimes, it’s the equivalent of throwing our keys in the trash and assuming nobody is going to look for them Dumpster diving is very common… and shredders are really cheap

13 Rule 6: Use but don’t share…
Passwords When you “let an employee go” you want to make sure their access is gone Bad idea to share administrative passwords with everyone

14 Rule 7: Understand your risk
Don’t be paranoid, but don’t be careless either Know what the real threats are and engage employees to help you Remember, you are managing risk not removing it (or ignoring it…)

15 Rule 8: Know what you don’t know
Sometimes you will have security needs which go beyond your expertise Know when that happens, and get help Don’t do silly things like open up your firewall because “Ned from Accounting needs to RPC in to his machine”

16 Rule 9: Don’t make the medicine worse than the disease
Recognize that accidents happen, and people aren’t perfect Don’t make it like a prison!

17 Rule 10: Use least privilege
Basically, most of your users don’t need complete control of their machines… so don’t give it to them Protects you from “whoops” moments

18 In Summary You CANNOT afford to ignore computer security
But addressing it DOESN’T HAVE TO BE HARD Simple precautions work well When it gets difficult, call for help!

19 Questions?

Download ppt "Computer Security for Businesses"

Similar presentations

Copyright 2006 Mid-City Offices Systems. Busy people… How would your business be affected, if you suddenly lost all of your computer data? Rush through.

Copyright 2006 Mid-City Offices Systems. Busy people… How would your business be affected, if you suddenly lost all of your computer data? Rush through.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
Windows XP Tutorial Securing Windows. Introduction This presentation will guide you through basic security principles for Windows XP.

Windows XP Tutorial Securing Windows. Introduction This presentation will guide you through basic security principles for Windows XP.
TAX-AIDE Computer Security Chris Hughes Chairman NTC 1 NLT Meeting Aug 2014.

TAX-AIDE Computer Security Chris Hughes Chairman NTC 1 NLT Meeting Aug 2014.
TAX-AIDE Computer Security Chris Hughes (HMR mod) Chairman NTC 1 NLT Meeting Aug 2014.

TAX-AIDE Computer Security Chris Hughes (HMR mod) Chairman NTC 1 NLT Meeting Aug 2014.
Is There a Security Problem in Computing? Network Security / G. Steffen1.

Is There a Security Problem in Computing? Network Security / G. Steffen1.
Mr C Johnston ICT Teacher

Mr C Johnston ICT Teacher
Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.

Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.
Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.

Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.

Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.
Threats to I.T Internet security By Cameron Mundy.

Threats to I.T Internet security By Cameron Mundy.
E safety. Ads It’s always best to not click on ads when you see them, and it’s always a good idea to ignore them, but if there are too many you can always.

E safety. Ads It’s always best to not click on ads when you see them, and it’s always a good idea to ignore them, but if there are too many you can always.
CS101 Lecture 14 Security. Network = Security Risks The majority of the bad things that can be done deliberately to you or your computer happen when you.

CS101 Lecture 14 Security. Network = Security Risks The majority of the bad things that can be done deliberately to you or your computer happen when you.
Malicious Code Brian E. Brzezicki. Malicious Code (from Chapter 13 and 11)

Malicious Code Brian E. Brzezicki. Malicious Code (from Chapter 13 and 11)
IT Security for Users By Matthew Moody.

IT Security for Users By Matthew Moody.
Threat to I.T Security By Otis Powers. Hacking Hacking is a big threat to society because it could expose secrets of the I.T industry that perhaps should.

Threat to I.T Security By Otis Powers. Hacking Hacking is a big threat to society because it could expose secrets of the I.T industry that perhaps should.
Securing Your Home Computer Securing Your Home Computer Jay Ferron ADMT, CISM, CISSP, MCDBA, MCSE, MCT, NSA-IAM.

Securing Your Home Computer Securing Your Home Computer Jay Ferron ADMT, CISM, CISSP, MCDBA, MCSE, MCT, NSA-IAM.
In the old days... You Your computer. Then came... The Network.

In the old days... You Your computer. Then came... The Network.
© Hodder Gibson 2012 Staying safe online. © Hodder Gibson 2012 Dangers on the Internet There are a number of dangers on the Internet such as: viruses.

© Hodder Gibson 2012 Staying safe online. © Hodder Gibson 2012 Dangers on the Internet There are a number of dangers on the Internet such as: viruses.

Similar presentations

Ads by Google