5 Steps to Improve Data Security

Why is it, that around the world, organisations are continuously failing to keep our most private information safe from prying eyes? In recent times, we have all read about cyberattacks and the subsequent compromising of our data. In January 2016, it was Royal Melbourne Hospital. In May 2017, at least 45 NHS hospitals in the UK were breached. Only weeks ago, the ‘WannaCry’ ransomware infection impacted 200,000 people across 150 countries. Clearly, cybercrime is on the rise, so why are so many of these organisations not keeping their software up to date? For any organisation, the personal data of your clients is the most likely target of a security breach so protecting that data should be a massive priority. Here are five simple steps you can take to improve data security:

1.   Maintain a regular plan of software updates

Updating and patching software must be done regularly and be a standard practice for the people in charge of Information Technology. A big part of this is ensuring that you are aware of all the devices that are connecting to the network including servers, machines, computers and mobile devices – whether they be yours or someone else’s. Everything must be included in your plan and the plan needs to be audited to confirm it is actioned.

2.   Maintain firewall and intrusion detection systems

Make sure you have a modern firewall and intrusion detection system. The easiest way to make sure this happens is to use the new cloud services provided by the security software vendors so your security systems are maintained and managed by third party experts 24/7.

3.   Use best practice

If you haven’t heard of ITIL (Information Technology Infrastructure Library) then you may have a problem. ITIL is the most widely accepted approach to IT service management in the world. It helps individuals and organisations use IT to realise business change, transformation and growth. You don’t necessarily need to know much about it but your IT people do and it should be used to maintain best practice IT service management in any sizable organisation.

4.   Educate the troops

Staff can be your greatest asset when it comes to protecting data and systems. Educate your people how to use the systems safely and remind them about the consequences of a security breach. Treat contractors and temporary staff as employees so they receive the same training. Simple things like password management, turning off computers/laptops at the end of the day, locking devices when not in use are all things everyone can do to reduce the risk of data breaches.

5.   Check your business partners

Business partners can be the weakest link in your data security process, so only work with partners who have demonstrable data security policies and practices. Moreover, make sure that requirement is included in the commercial and legal documents and penalties for any breach are crystal clear.

The bottom line is this; the private data of your clients is just that – private. The outcomes of a data breach can be severe for everyone involved. The consequences for an organisation’s reputation and the resultant fall in public confidence could be catastrophic.

At the very least, the five simple steps outlined above should be in place. Take data security seriously, or run the risk of being the next newspaper headline.