Protecting endpoint devices
Small and mid-sized businesses (SMBs) are keenly aware of the need to protect
their endpoints from exposure. Endpoint devices that are vital to business operations
-- like servers, laptops, and desktops -- are increasingly being targeted by
attacks designed to compromise and steal company data. And even as these threats
are becoming more sophisticated and targeted toward endpoint devices, end users
are demanding increased flexibility and access into the network (remote, VPN,
web-based, telecommuting, use of unmanaged devices). When you add regulatory
compliance mandates to the equation, SMBs are finding they must scramble to
implement, monitor, and enforce controls that protect endpoint devices.
How can SMBs protect themselves and their customers? The following five tips
for securing endpoints will help build a strong defense against the increasing
stream on attacks and threats:
1. Use layered security: Deploy defense-in-depth strategies for employees
and other end users, including an integrated endpoint security solution and
security patch updates. Antivirus definitions and intrusion prevention signatures
must be updated regularly, and all desktops, laptops, and servers should also
be updated with the necessary security patches from the operating system vendor.
Consider deploying a personal firewall to help control network traffic to the
endpoint device. Also, make sure to enable the security settings on Web browsers
and disable file sharing.
Additionally, teach users to develop strong passwords with at least eight characters
and a combination of numbers, letters, and special characters. Change all passwords
every 45-60 days to make it more difficult for intruders to access your data.
2. Implement a network access control solution: All network-connected
computers and inbound/outbound traffic should be monitored for signs of unauthorized
entry and malicious activity. Ensure that any infected computers are removed
from the network and disinfected as soon as possible. Also, create and enforce
policies that identify and restrict applications that can access the network.
To ensure they have the latest protection, SMB's should apply operating system
and security software updates and patches as soon as they are released and all
browsers should be upgraded to the latest versions.
3. Stay informed: Several companies publish reports that help define
the threat landscape for SMBs. These reports can be found on the various companys'
websites or through online searches. This is a great way to stay informed about
the threat landscape so you know what you're up against.
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
jfruh
Apple syncing patent can't come soon enough
pasmith
New Twitter features borrow from 3rd party clients
Esther Schindler
Open Source Changes the Software Acquisition Process
mikelgan
How to set up continuous podcast play on the new iTunes
David Strom
Five important Windows 7 mobility features
sjvn
Guard your Wi-Fi for your own sake
Sandra Henry-Stocker
Grepping on Whole Words
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
