• Know you assets and applications running on Endpoints
  • Have a working change management process for security updates deployment
  • Have a well-defined and easy to execute patch management process
  • Harden endpoints by disabling ports/protocols not in use
  • Enable Firewall on endpoints
  • Updated AV and anti-malware running on endpoints
  • Critical data saved on file servers (and not endpoints) with backup solution/process implemented
  • In case, there is requirement to save data on endpoints, implement backup solution/process for endpoints
  • Deploy and configure anti-phishing solution at Email gateway
  • Deploy and configure Application control solution to prevent execution of malware
  • Security awareness is the key…..refresh user awareness at periodic intervals

Adhering to basics and following the above steps will enable you and your organization be better prepared for cyber-attacks….

By:- Sapan Talwar