In the second part of our two-part Internet Privacy series, we'll explore the complex and daunting world of cyber security for your office and business. Our expert panelists will offer insights into all things Internet as they answer questions like…
• How do you know if you've had a data breach? And what to do about it.
• How do you comply with Nevada's law requiring encrypted transmission of data?
• Should you get a VPN?
• What are the pros and cons of employee-owned (BYOD) vs company-owned devices?
• Should you buy Cyber Risk insurance?
• What are ransomware and malware and how can you protect yourself?
• How can you prevent whaling / phishing high-value targets?
• How does the EU’s new GDPR law affect you?
• And much more!
You won’t want to miss this comprehensive panel discussion if you’re concerned with your business's privacy on the world wide web, and if you want to know what you can do to protect it.
4. Confidential. Intellectual property of Noble Studios.
“In the very near future, cyber
security exercises are going to be
absolutely expected of all companies
by regulators.”
– Michael Vatis
6. Confidential. Intellectual property of Noble Studios.
• You’ve experienced a security incident – What is an incident?
• An attempt or the action of violating your information systems, network, or site security.
• What types of security incidents are there?
• Data Breaches
• Firewall Breaches
• Virus & Malware outbreaks
• Insider threats
Reactive
7. Confidential. Intellectual property of Noble Studios.
“My message for companies that
think they haven’t been attacked is:
“You’re not looking hard enough”.
– James Snook
8. Confidential. Intellectual property of Noble Studios.
How do you react to a security issue?
• Contact your security team
• Contain the incident to prevent further damage
• Analyze the site for the damage that took place, find the root of the incident
• Evaluate if the damage can be restored
• Eradicate the breach by removing the affected items
Action
9. Confidential. Intellectual property of Noble Studios.
“Understand what data you hold, how
you are using it, and make sure that
you are practicing good data
hygiene.”
– David Mount
10. Confidential. Intellectual property of Noble Studios.
What are warning signs of a security issue?
• Finding unexpected log messages
• Files that have been recently changed or edited (not by you)
• New Admin Users created in your CMS
• Strange JavaScript in your website code
• Your emails are being sent to spam folders
• Seeing a traffic site on pages that don’t exist
• Your site can’t be accessed by Google
Proactive
11. Confidential. Intellectual property of Noble Studios.
How to prevent a security issue?
• Be prepared
• Keep your website up-to-date
• Keep all applications & software up-to-date
• Implement a website hosting security checklist
• Install an SSL Certificate for your site
• Stay current on policies like GDPR
Proactive
Set up the Reactive – Action – Proactive – Mindset framework
When there is an incident, what types of incidents are there?
How do you know if you’ve had a data breach?
What to do if you have a data breach.
As a business owner/ marketing team how do I know when something is wrong security wise.
Is your website out of date?
How do you react to a security issue?
-What do you do when it happens? Partnerships and having a team in place for these issues is important.
How to be proactive and prevent security problems – give list of examples, brainstorm with Sterling.
Tips for Prevention: Website hosting checklist, keeping your website up-to-date
Be prepared: create an Incident Response Plan
Why you NEED SSL for your website (even a static site)
Implications of the EU’s new GDPR law and the “right to be forgotten”, use GDPR as an examples or benefit of having a proactive plan.
We support clients to be compliant with PII/ HIPPA/ PCI
How to be proactive and prevent security problems – give list of examples, brainstorm with Sterling.
Tips for Prevention: Website hosting checklist, keeping your website up-to-date
Be prepared: create an Incident Response Plan
Why you NEED SSL for your website (even a static site)
Implications of the EU’s new GDPR law and the “right to be forgotten”, use GDPR as an examples or benefit of having a proactive plan.
We support clients to be compliant with PII/ HIPPA/ PCI