This holiday season, it’s more important than ever to remember your cyberhygiene basics to help keep the bad guys out. As I write this, Chinese government cyber threat actors are actively trying to exploit IT service providers and their customers, according to a recent US CERT notification regarding Chinese Malicious Cyber Activity.
At SolarWinds, we design our products with security in mind, but you also need to do your part. This is a perfect reminder that the fundamentals of cybersecurity—good cyberhygiene—is critical to protecting your systems and those of your customers. Your hygiene holiday check list should include a solid mix of proactive, detective, and reactive security to help shut the bad guys down.
The best defense is to stop the breach at the door. The four essentials you need to help do this are:
Detective security helps enable further protection against those threats that may get through the proactive layer. This means employing:
If some threats still slip through, you need to be able to quickly recover systems to a safe state, which means you need:
Even your Crown Jewels don’t circumvent this type of layered approach. This is the minimum essential core of what you should be investing in to help you keep your business running securely and keep threat actors locked out. The US CERT office lays out a number similar best practices, which we consistently cite and agree with.
It may not be the most exciting part of cybersecurity, but good cyberhygiene is absolutely necessary. Do your part with this in-depth layered defense strategy and you’ll have a better shot at enjoying your holidays, and so will your customers.
Find more information here about how to combat external threats.
Tim Brown is VP of Security for SolarWinds MSP. He has over 20 years of experience developing and implementing security technology, including identity and access management, vulnerability assessment, security compliance, threat research, vulnerability management, encryption, managed security services, and cloud security. Tim’s experience has made him an in-demand expert on cybersecurity, and has taken him from meeting with members of Congress and the Senate to the Situation Room in the White House. Additionally, Tim has been central in driving advancements in identity frameworks, has worked with the US government on security initiatives, and holds 18 patents on security-related topics.
The SolarWinds and SolarWinds MSP trademarks, service marks, and logos are the exclusive property of SolarWinds MSP UK Ltd. or its affiliates. All other trademarks are the property of their respective owners.