With so much written about information security over the past several years, most professionals are now aware of the importance of security when using a computer. Yet, despite this heightened awareness, stories abound about sensational hacking schemes crippling businesses, unpatched programs leaving computers seriously at risk, and phishing scams successfully pilfering user identities by the thousands.

Unfortunately, many of the same people who are aware of the importance of information security aren’t taking the necessary steps to secure their computing assets and information.

When it comes to the topic
of information security, there’s no such thing as too many reminders. With that in mind, the following areas outline the minimum preventative measures that should be implemented when connecting any machine, server or network to the Internet or other machines.

Workstations/Laptops/Home Computers
• Antivirus Software – constantly monitors your machine for worms, viruses and Trojans (also known as malware), and then eliminates or quarantines those threats. Antivirus software should be configured to:

• Patch Management – ensures that product patches addressing known software vulnerabilities are downloaded and installed on a timely (real-time) basis. New vulnerabilities are discovered almost daily. Critical updates should be installed as soon as they are made available by a vendor.

• Software Firewall – protects against unauthorized external access attempts, as well as monitoring installed software attempting to make unauthorized outbound connections.

• Anti-Spam Filter – monitors all inbound messages, and filters out obviously undesirable e-mail based on content, unknown senders or possibly malicious payload. Phishing scams seeking to entice users to share their confidential information can be especially devious. Spam should be stopped before it ever reaches a user’s “Inbox.”

• Anti-spyware Software – detects adware or spyware products looking to log machine usage and transmit information to unauthorized individuals, as well as eliminates annoying and potentially malicious pop-ups from hijacking Internet browsing software.

• “Non-public” IP Addresses and Router – prevents direct machine visibility to the outside world. Just like every house has a street address, each machine must have an address to communicate with others. However, not every machine needs to connect with others directly. Instead, a network router can act as an intermediary, communicating with local machines using non-public IP addresses, forwarding all external traffic to/from the Internet as needed on a user’s behalf.

Additional Measures
• Strong Passwords – creates the first line of defense against hackers and others seeking unauthorized access to systems and online accounts. The following guidelines should be followed when establishing passwords:

• Hardware Firewall – prevents unauthorized external connection attempts and makes systems “invisible” to port scans by outsiders.

• Wireless Security – The rapid introduction of wireless functionality in virtually all new computing devices is both convenient and a significant security threat. It’s especially critical to keep the following in mind when configuring wireless devices:

• Backup – Creating a layered defense to guard against attacks is important, but the ability to recover, if and when systems are compromised, represents the last line of defense. In fact, sound backup and restore procedures are crucial to ensure the continued availability and integrity of critical programs, and data in the event of a breach. A recent backup may represent the only way a machine can be restored to normal use. Note: After a backup system is in place, test it to ensure your data is being backed up properly.

Following the above guidelines is a sound strategy for protecting your computing assets and the vital information maintained on these systems. If you’ve deferred any security projects, why not use this reminder as the motivation to take care of business.

And if you still lack motivation, ponder the following points:

• Unless you completely disconnect your computer from the outside world, there is no such a thing as absolute security, only controlled risk.
• Information Security is not an event, but an on-going process ... and the enemy is evolving constantly.
• Your computer system is only as strong as its weakest point.
• No one product, vendor or strategy is sufficient to fully protect your computing assets; security must consist of multiple “layers” of defense, i.e. products, configuration and measure to ensure sufficient protection.

About the Author
David Cieslak, CPA, CITP, GSEC, is a principal with Information Technology Group, Inc. (ITG) in Simi Valley, Calif. A recognized speaker and writer in the CPA community, he specializes in microcomputer accounting systems, the Windows operating environment, eCommerce, Palm computing, network security, systems development and project management. Contact David at dcieslak@itgusa.com.

Top