Staying IT Secure

Staying IT Secure

Unfortunately due to lockdown, there are many people out there that have no money, but plenty of time on their hands. The result: hackers designing, malware that is nothing of the likes that has been seen before.

Local Swindon businesses and businesses around the world are becoming more aware and practised in the field of cyber security. But still, everyday high-profile data breaches are occurring.

So, what can you do as business to ensure that your business does not fall victim to the ever growing threat?

Some firms believe that if you pay the money, your system will be protected, but that is not often the case. Obviously a good IT infrastructure does help. And we all know that there are no companies out there that want to lose data (The results of a breach can in some cases, destroy a business, especially if you are one that gathers personal information). But, money and the system alone can not always protect.

90% of the data breaches in 2019

As sad as it is, IT systems are not the weakest link in your IT security amory, your employees are i.e. human error.
We all know that employees will never willingly cause harm to your business, but it is a fact that the Information Commissioner’s Office (ICO) was able to attribute human error being the root cause for 90% of the data breaches in 2019.

Police National Computer

Just recently this issue was highlighted when around 150,000 records were wiped off the Police National Computer, including fingerprint, DNA and arrest history details. The issue was said to have been caused by defective code, introduced to the system through a simple mistake from one of its users!

Fortunately, events like this can be surprisingly easy to resolve. But this is only if the correct security and IT measures have been put in place.

Correct back up systems in place

Robust IT data backups can store archives of data to be reinstated if the need arises. This way, if anything gets deleted or compromised, it can be restored to the last proper version quickly and effectively.

So how do you ensure that your SME has the correct back up systems in place?

Keep it remote

The aim of backing up data is to ensure it remains accessible whatever happens to the original, so the further away it can be stored the better. Wherever possible ensure it is not even in the same building or system. This way if your initial IT system is compromised, you have that second layer of security.

Frequency is key

Backups should be taken on a regular basis, so nothing risks being lost. Options are available ranging from continuous backups to once a day. Consider your business and its individual needs, then make the decision accordingly.

Making your backups secure
Backups are like an insurance policy – you never want to use it, but you will be very glad it’s there if you do need to use it. Ensure backups should be subject to the same level of security as the original data. Ensure they are encrypted and stored securely, so that hackers can’t get at your data through the back door.

We are experts at security and backup systems

At System Integration, we don’t just look after the normal IT support services, but we are experts on assisting local Swindon and Wiltshire SMEs with their security and backup requirements. If you think your system could do with a double check to ensure that cyber security is something you never have to worry about, get in touch. We can advise your employees on best practises and can help you ensure that your data is always secure..

Are you prepared for another lockdown?

Are you prepared for another lockdown?

With the current Covid crises, Lockdown in place & the threat of different tiers of restriction being enforced once this is over, you may want to look at your setup with regards to home working for your staff.

A lot of businesses may have already know what to do and may have already done this, but there are still a few out there that may not be as prepared.

A couple of months ago we did let you know how we could help you ensure your team are all set to WFH and are prepared to start remote working. But for those that didn’t catch that, and are now evaluating how they can be prepared in case there is a local lockdown in the Swindon and Wiltshire area, here is a checklist that you can use to make sure you are ready…

Room

The efficiency of personal workspaces at home. Are your employees making the most of your home workspaces by utilising laptop docks and larger screens? Do your employees have the correct chairs and desks? The last thing you want is one of your employees to come back to work with a strained neck or back due to them not sitting in the correct position.

Privacy

Are headsets and webcams needed for web calls? Does your team have this equipment? After all, you do not want them making calls to clients whilst the TV can be heard in the background and they struggle to communicate.

Is data accessible

Can your home workers access business files and data securely? And if so, do you have a secure VPN?

Security & Privacy Policy
Have you updated your business’ computer security policy for home worker computers (BYOD)? And if you have an up to date policy, are you sure that your empoyees know what is in it?

Enough IT Equipment

Do you have enough business computers and monitors available for your team to work from home? If you do not, do not worry as this is where Systems Integration can help with our IT support contracts. We can help and provide you with the latest equipment for short periods at a fraction of the price of purchasing new.

Home support

Can your tech support actually help your team remotely. Problems do not stop for your team just because they are working from home. You need to ensure that you have IT systems in place that allow full access.

Phones

Can your home users still access the work phone lines remotely? Do your home workers have good internet service at home to support their needs?

If you want to ensure that your team is ready for home working or are wanting to improve your current home working structure, please feel free to get in touch and let us see how we can ensure that your team’s transition from the office is as smooth as possible.

Are You IT Safe

Are You IT Safe

We all know that Swindon is a hub for new businesses and at Systems Integration we are fully aware of the initial issues that many of these new businesses face and are often unaware.
What with getting your brand seen, securing new clients and building a reliable and solid team, many often overlook some of the basics such as IT security and awareness.

Nearly 50% of UK businesses experienced some form of a cyberattack in 2019-2020, and more than 60% of cybersecurity experts are concerned about data loss and leakage, among a range of other vectors. Obtianing data illegally is now a big business and the criminals and hackers are upping their game daily. If you are just starting up your business, are you aware of what level of security you will need to ensure your clients’ data and your business is safe? This month we give you some tips..

Firstly, never assume it is just big corporations that are prone to cybersecurity breaches. All business that store data are, from your sole trader with his accounts and that of clients to solicitors and recruitments agencies, all store customers and clients data of some form or another.

As a new business, consider what risks you face if you suffer a cyberattack.

  • Downtime
  • Clients trust
  • Loss of future clients
  • and of couse expense.

Thats right, not just the cost of getting a IT professionals to find the breach and fix it, but you can also be sued by your clients

As they say, an ounce of prevention is better than a pound of cure, so here are some IT security tips and things your should look for when you are exploring your It security options.

Initial Assessment

In order to build your cyber defenses, you need someone to carefully evaluate your current situation. At System Integrtaion when we take you on as a IT partner, we evaluate your complete IT infrastructure for vulnerability, ranging from your users’ passwords to hardware settings and blocking legacy authentication.

We are Microsoft Partners and using industry-standard metrics like Microsoft’s Secure Score, we can compare how your business fares against industry standards, and we can let you know what steps are in hardening your security posture.

This can also include simple task such as determining how tech-savvy your team are –

  • Do they know the best practices to prevent attacks in the first place?
  • We know that email is the main point of entry, but do they?

If not we can provide training.

Implementation of Controlled measures

Once the weak points in your IT security have been identified, we look at how to remove them, such as ensuring all your data is using end-to-end encryption.

Encryption ensures that if someone intercepts your data as it is being transmitted, they still won’t be able to read it. This kind of interception commonly happens over Wi-Fi, especially when public, open networks are available. It’s perfectly fine to have an open Wi-Fi network for your customers to use, but your other business actions should take place on a separate network using encryption. See our previous blog on secure Wi-Fi.

Unfortuntely though there are some cases where encryption can’t protect you, which is why we also focus on one of the most common danger zones such as email. Did you know that over 65% of hackers and cyber criminals used phishing to invade their victims’ networks?  Phishing is the act of using email to lure people into providing sensitive information. It is not uncommon for you employeess to recieve an email that appears to be an official Microsoft account asking for your Office 365 login information. If this is obtained the hackers can then the files in your compnaies cloud storage and pilfer your data.

Phishing can be prevented by securing your email servers through your web host. Systems Integration can assist in implementing protocols such as Domain-based message authentication, report & conformance (DMARC); Domain Keys Identified Mail (DKIM); and Sender Policy Framework (SPF) standards. These security standards will help to identify phishing attacks and alert users before they even open the email.

Advanced software can determine who in your organisation has access to data and what data they can access. It also can connect with cloud services such as Microsoft 365 to limit an individual’s access to sensitive information.
For startups, this will actually make expansion easier as you’ll be able to add users more easily and prevent new employees from seeing too much. User access control ensures that the data is seen by the right people. Data governance and a robust secure posture need never get in the way of productivity and innovation. Then you are also in a position to further strengthen the validation of user logins by setting up two-factor authentication (where possible). This requires your users to input a second code that they receive on their phone or other device, ensuring that your computers aren’t being accessed by a hacker sat down on a pc miles or even continents away.

What yourself and your team need to understand that most of the time it is not possible for these hackers and criminals to access your data unless they are invited i.e. your biggest threat is your employees, who probably will do this with have any malicious intent at all.
If required Systems Integration can provide you with soem great tutorial and educational videos along with face to face tutition on how to prevent any of this happening. After all when you work with us, we are all one big team and we like to think that all players are premiership standard

If you are a business that is just setting up and find all this to be a bit of a minefield feel free to get in touch with us. We pride ourselves on assiting new businesses and helping them grow. From IT support Contracts or services such as Microsoft experience/training, VOIP services, Disaster recovery or dats backup, we are here to help and offer advice. We all know that Swindon is a hub for new businesses and at Systems Integration we are fully aware of the initial issues that many of these new businesses face and are often unaware.
What with getting your brand seen, securing new clients and building a reliable and solid team, many often overlook some of the basics such as IT security and awareness.

Nearly 50% of UK businesses experienced some form of a cyberattack in 2019-2020, and more than 60% of cybersecurity experts are concerned about data loss and leakage, among a range of other vectors. Obtaining data illegally is now a big business and the criminals and hackers are upping their game daily. If you are just starting up your business, are you aware of what level of security you will need to ensure your clients’ data and your business is safe? This month we give you some tips..

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners. View more
Cookies settings
Accept
Decline
Privacy & Cookie policy
Privacy & Cookies policy
Cookie name Active

Who we are

Our website address is: https://www.systems-integration.co.uk.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

We use cookies to retain user preferences and provide anonymised tracking data to third party applications like Google Analytics. As a rule, cookies will make your browsing experience better. However, you may prefer to disable cookies on this site and on others. The most effective way to do this is to disable cookies in your browser. We suggest consulting the Help section of your browser or taking a look at the About Cookies website which offers guidance for all modern browsers. If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed. If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue. For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.
Save settings
Cookies settings