3 Simple Tips For Improving Your Cybersecurity Hygiene

3 Simple Tips For Improving Your Cybersecurity Hygiene

Photo Attribution: Axtem/Shutterstock.com

Nowadays, more than ever before, we are reminded to stay on top of our hygiene. Whether it is frequently washing our hands, sanitizing work stations, or keeping our distance from others, regular practice is key to preventing illness.

As we develop routines to keep ourselves physically clean, it is important to ensure that we also do not neglect the regular protocols that our technology demands. From computers to mobile phones and everything in-between, there are approximately 200 billion connected devices worldwide. These very devices are often home to our most sensitive data. Keeping these items safe from hackers, viruses, and malfunctions requires regular upkeep. With this in mind, we have a few important considerations for building out a new or stronger "immune" system for your cybersecurity hygiene plan.

What is cybersecurity hygiene?

Before going through some key items for your cybersecurity hygiene plan, you will want to understand its meaning. Do not be surprised to find out that you may have already implemented some of these actions. Sometimes, the most important item that most people miss is consistency in performance.

Cybersecurity hygiene should cover areas that include a company's hardware, software, and IT infrastructure as well as employee awareness and training. Following up and regularly updating these areas of your organization's infrastructure will ensure the deterrence of future cyber threats. A sound routine will also improve the ability of an organization to track the relationships between incidents and specific hardware.

3 areas to consider for enhancing your cybersecurity hygiene

  1. Perform regular system updates

    Whether a laptop or mobile phone, we often receive notifications to "update to the latest software version". Many continuously put-off these updates to a later time, in order not to disrupt their current workflow. It is important to follow through on these updates as soon as they are available. Many offer enhanced security patches to new vulnerabilities. If you notice that you have not been prompted to update in more than one month, you should check your settings as manual action may be required.

    Example: A recent data breach of Equifax, a credit reporting agency, saw hackers steal the personal information of 147.7 million Americans from its servers. The reason? Equifax failed to apply an update to patch a security vulnerability on their internal system.

  2. Regularly verify access management

    Whether your organization is home to 10 or 10,000 employees, there should be a system in place to monitor who has access to particular systems and information. For instance, personal health information (PHI) that is accessed by an unauthorized employee can lead to serious trouble in terms of infringing on HIPAA compliance in the U.S. Besides keeping records of organizational permissions, it is recommended to also implement the use of strong passwords and multi-factor authentication on all programs.

    Did you know? Microsoft says that users who enable multi-factor authentication (MFA) for their accounts will end up blocking 99.9% of automated attacks. Though this does not apply to Microsoft programs only. Enabling MFA will have similar results for users of most other platforms as well.

  3. Implement a rapid response plan

    If danger strikes, make sure you are not caught off guard. Hackers work quickly, so you will need to ensure a few key items are in place when it comes to responding to a variety of different cyber attacks.

    Set goals: Reduce response time, minimize data loss, and get employees or clients back online as quickly as possible.

    One of the best ways to reduce your response time is to test your plan with employees you have entrusted to assist in case a particular situation arises. Create mock breach scenarios on a regular basis to improve response time and improve your team's tactics in ridding the breach.

Other important areas to consider regularly updating

The government of Canada has compiled a list of key areas to monitor and update regularly as part of your cybersecurity hygiene plan.

  • Mobile device security (stay on top of software updates)

  • The creation of strong passwords (updated regularly)

  • Social media security (multi-factor authentication)

  • Traveling with a company device (what are the policies?)

  • Knowledge of the most common cybersecurity threats

For more in-depth tips on the above-noted categories check out the Government of Canada's cyber hygiene page.

Client Success

MetroHealth System Logo
  • 50% reduction in time to deploy Giva's change, incident, problem, asset management and knowledgebase modules
  • 60% reduction in the 5 year Total Cost of Ownership (TCO)
  • Saved at least 1 FTE due to lower ongoing administration
  • Saved 1 week per month due to easy to use reports
Athens Regional Health System Logo
  • Increased to 90% achievement in meeting service level agreements
  • 70% reduction in generating reports and admin; eliminated 35 hours/month
  • 50% faster to create/assign a service request
  • 60% increase in information captured during the initial phone call
  • 50% increase in the number of service requests created due to intuitive design
Santé Health Systems Logo
  • 80% increase in productivity by using Giva's dashboards and reports
  • 60% increase in meeting service level agreements
  • 45% increase in the number of the calls logged due to Giva's intuitiveness and ease of use
  • 50% increase in productivity by using Giva's integrated custom forms