Core Security Services
Essential services you should be running
Last updated Friday, July 27, 2018
Each security service you deploy lessens the chances of a successful cyber attack. The harder it is to penetrate the defenses of an organization, the safer their data becomes. An effective, comprehensive strategy consists of many components including software services, company policies, employee education, and enforcement. Here are a few services that all organizations should be running today...
Centralized Patch Management
Attackers often exploit newly discovered vulnerabilities in firmware, operating systems and services. Software and hardware companies release security updates for their apps and products on a weekly basis. If you’re relying on your users to apply these updates and perform restarts, you’re leaving yourself open. All companies should be centrally managing Windows updates and application patches, deploying them without depending on action from their end users.
Managed Antivirus Services
By deploying a managed antivirus (AV) solution in your organization, you’re adding additional protection against malware and ransomware. This protection is most effective when virus definitions are kept up-to-date. Managed AV services make sure that every Windows computer always has the latest virus protection to maximize your defense against threats.
Bidirectional Email Filtering
Inbound email filtering significantly reduces incoming threats. A good inbound filter will block 98% of spam and 95% of malware before it ever reaches a user’s inbox, increasing employee productivity and lowering risk. Outbound email filtering protects your organization’s reputation from damage if an employee email account is compromised and used by an attacker to send spam and/or malware to contacts in their address book.
Managed Firewall Security
Your company firewall sits between your network and the rest of the world. Simple firewalls do a fairly good job of keeping outside attackers from penetrating your network. However, better firewalls can also prevent employees from accidentally downloading malware to their system by blocking threats at the moment they are requested. Configuration options include firewall backups, AV subscriptions, intrusion detection alerts and zero-hour blocking.
Server Monitoring and Maintenance
A well-maintained server is important to any organization. Manage CPU and disk performance, monitor services and applications, and receive proactive push alerts whenever a problem arises.
Backup and Disaster Recovery (BDR) makes sure your essential systems are backed up daily to a secure off-site facility, protecting you from data loss in the event of ransomware, fire, flood or theft.
Social engineering has been used to obtain credentials from millions of people (Including Hollywood celebrities). Protecting network and email access with Multi-Factor Authentication (MFA) can help prevent access by an attacker who has managed to obtain a valid username and password.