- Know you assets and applications running on Endpoints
- Have a working change management process for security updates deployment
- Have a well-defined and easy to execute patch management process
- Harden endpoints by disabling ports/protocols not in use
- Enable Firewall on endpoints
- Updated AV and anti-malware running on endpoints
- Critical data saved on file servers (and not endpoints) with backup solution/process implemented
- In case, there is requirement to save data on endpoints, implement backup solution/process for endpoints
- Deploy and configure anti-phishing solution at Email gateway
- Deploy and configure Application control solution to prevent execution of malware
- Security awareness is the key…..refresh user awareness at periodic intervals
Adhering to basics and following the above steps will enable you and your organization be better prepared for cyber-attacks….
By:- Sapan Talwar