Kazi Nazrul Islam, Sr.Consultant Cyber Security, PricewaterhouseCoopers(PwC)
According to the Business Intelligent and Institutional survey 65% Organization are experienced some sort of a cyber-attacks which is very common cyber Incident now a days. Employees are communicating with the colleagues , stakeholders, vendors, business partners over the Internet. Lack of appropriate Implementation of technological solution organizations are unable to detect and prevent the cyber-attacks that lead to the organizations are experiencing theft credential, affected many types of malware attacks related to ransomware, remote code execution, cloning card data etc. However, Organizations are often less prepared to deal with the security threats than their larger counterparts.
But experience of security experts says that to a large degree, most of these attacks are preventable if the organization chose to follow the below steps crafted specifically to protect their enterprises against cyber-attacks.
Layered security: Must–Have Solutions for Cyber Protection.
Security Assessment: It is Important to established and close existing vulnerabilities and assess has to be perform regular frequency.
To Implement the spam filtering solution: Spam filters to reduce the amount of spam and phishing emails that your business receives. Spam emails that come from a person or company that you don’t know. The best thing deletes the unknow email and Implement the spam filter solution and Configure it appropriate manner that will help reduce the chance of you opening a spam or dishonest email by accident.
Patch deployment: Deploying the patches help you to fix a bug or error your applications and systems that will protect your organization asset from adversary. Automated tools can help you to save your time, synchronizing the vulnerability database, scanning all machines in the network to detect missing patches. However, it is Important to organization should follow the organization patch management process.
TO Implement IDAM ( Identity and access management solution): Deploying the solution will help you to
- Quick and secure access to resources
- Automating joiner and leaver processes
- Remember multiple complex passwords
- Regulatory compliance and auditing
- Enabling centralized controlling and monitoring of users and behaviors
- Centralized management of user provisioning and deprovisioning
- Centralized management of a user identity across multiple systems (external and internal)
- Enhancement of role-based administration and group policies.
To Implement End point-detection and response: Traditional antiviruses are no longer suitable for providing security to your network, systems as hackers have become smarter and developed malware and threats that can easily bypass antiviruses. Good EDR solution has powerful inbuilt data analytics which can deal with malicious code effectively. Also, Integrated whitelisting and blacklisting options and real-time Incident response and management.
To Implement Multifactor Authentication: Use Multifactor authentication whenever possible web application, network device, mobile application, Internet banking,router,firewall etc. which can you’re your organization to defy cyber-attacks like as theft of credential from victims, Identity Theft, hijacking session, Keyloggers and so more.
To Implement Mobile device security: Companies often lack the ability to prevent cyber-attacks on mobile devices, particularly when they use a Bring-Your-Own-Device (BYOD. MDM can Secure and centralized monitor, business email and documents on mobile devices in containers, making sure that access to company data is controlled from malicious event.
To Implement Encryption: Encryption help you to protect confidentiality of digital data either store or transmit through network. For eliminating the unauthorized tempering organization should Implement the data encryption related to disk encryption, tablets, smartphones, password, email, customer sensitive Information etc.
To Implement Disaster recovery plan: A well-organized and active Disaster Recovery Plan will cover the way for a swift reaction if the organization does experience a cyberattack in the future. It should have a well-defined escalation path, and proactive communication is to be prioritized in case an unplanned incident occurs.
To Implement Web application security: A web application help you to protect your web application throughout filtering, monitoring HTTP traffic. It is also protecting the application from attack like as CSRF, XSS, file Inclusion, SQL Injection so more.
Educate and employee awareness: Untrained employees regarding cyber-security matters are the weakest point in the organization and the strongest opportunity for the cyber-criminals. If not your employees are properly trained and educated about attacks and ways to prevent, your business remains at the risk of cyber-attacks. Now today’s , it is essential that employees must receive proper training and education on subjects of cyber-security. It is the responsibility of the organization learn their resource such as latest threat vector and way to handle them.