3 IT Security Keys for SMBs in 2018
Tim and Marina Wainwright were first time home buyers. They’d lived in an apartment, managed to save $30,000 over six years for a down-payment, and were only a few weeks away from closing on their new home.
But on closing day, they discovered that their $30,000 was long gone and there would be no closing on a new house that day.
Harden Your Network Defense with a Next Generation Firewall and IPS
What does the Wainwright’s story have to do with info security keys for SMBs?
Tim and Marina worked with multiple organizations as part of the process of buying their house, from their realtor, to their bank, to the title company. These businesses each shared and stored the Wainwright’s personal financial data throughout the process.
In order to comply with bank regulations in their state, the Wainwright’s bank had implemented a new information security regime that included:
- An Intrusion Prevention System (IPS) to keep unauthorized traffic out of the network;
- A Next Generation Firewall (NGFW) that enabled the bank to enforce its strict and specific network access rules;
- An Intrusion Detection System (IDS) that enabled the bank’s IT Security to detect and address any unauthorized traffic that might have made it through the firewall.
Also, state regulations required that any company that did electronic data exchange with banks in the state have similar security regimes.
Implementing these security mechanisms meant that, while it would not be impossible for hackers gain access to the Wainwright’s personal financial information, it would certainly have been more difficult than it would be for the same hackers to gain access to the average SMBs’ client data.
While small business owners might believe that hackers only target big-name companies, not small, local outfits, a New York Times article entitled “No Business Too Small to Be Hacked” noted that “Sixty percent of all online attacks in 2014 targeted small and midsized businesses.”
Key #1: In 2018, hardening your network defense with combination of a Next Generation Firewall and an Intrusion Prevention System is a basic necessity for protecting client data.