Utilizing the Cloud to Store Documents? You May Want to Secure That Too.
We know that the best method to keep data and documents safe on any device is to back up to the cloud. But how do you keep your cloud safe and secure? Keep 5 things in mind for your cloud storage:
Multi-factor authentication – Yes, you have heard it before so make sure you set it up
Turn off shares – Shares should be removed or set to expire after their usefulness
Limit sharing – Share only the folder or file you need to share; sharing too much is a risk
Trusted syncs – Only sync your cloud data to trusted devices you own and control
Audit – Regularly audit your local and cloud storage to make sure everything is working as expected
Security Starts with YOU!
Two-factor and multi-factor authentication is nothing new at this point. Online accounts for your banks, utilities, school and hopefully your business most often will require some sort of multi-factor authentication when accessing your account. If this is not enabled for everyone in your organization, it absolutely should be. Whether you use an authentication app like Microsoft Authenticator or a password manager like Keeper, standardizing authentication protocols company wide is critical to securing attacks against user error or stolen credentials.
Zero Trust Access
Frequently called “The Law of Least Access”, monitoring the access of cloud environments is critical in the new age of cybersecurity threats. We must always “assume breach” and act as though the attacker has already infiltrated your network. To make things even more complicated, workers are now working from multiple locations and in many unsecured networks with different devices. Using the zero-trust model limit access by department and set a time limit on shares. Lastly, if sharing is needed externally, set access to limited/read only and audit these external shares closely. Train users regularly on the proper method of file sharing using OneDrive & SharePoint regularly.
Enable a Cloud Backup
Tools like OneDrive and SharePoint make preventing accidental deletions simple, but on the off chance that it does occur, having a dedicated cloud backup in place is key. Our Microsoft Cloud Backup is available at a low monthly cost, per user and creates a snapshot backup of everything that the user license has access to across the Microsoft Cloud Environment. Again, regularly training to ensure that employees are always saving files to a backed-up location such as OneDrive or SharePoint is critical. Organization admins can set up personalized notifications for when things are deleted as an additional management step.
The methods above are only as strong as their backing by leadership and staff. Training staff to be aware of security risks is often half the battle and that is why we recommend an annual Security Awareness Training presentation by your trusted IT vendor or by utilizing a Security Training and Email Threat Simulation tool to regularly expose your staff to security risks.
These methods are the pillars of our ICAP (Infotect Consulting and Assistance Program). ICAP is the customized, premier solution for your IT Support and Managed Service needs. Our services include quarterly business strategy meetings, help desk services and proactive alerts so that you can focus on the parts of your business important to you. If you would like to learn more about our ICAP Program, visit https://www.infotect.us/managed-it.
