we make managing your business technology more manageable

So you think your network is secure?

Posted July 11th, 2016

We all know no business is completely safe from security vulnerabilities. Just look at Home Depot, Target and many others. These are all large companies with huge IT budgets. What about small companies how can they protect their network?

We at PerformanceIT have been running security assessments at small to medium size companies for many years and in the majority of cases we find most are subject to significant risks.

score

Most of the risks are due to the following factors

  • Inconsistent password policy: Password policies must be consistent and applied uniformly across all computers.
  • Directory share permissions: Many people use the shared drive as a way of filing information they like to share, however some like to give temporary access to a file to an employee but forget to remove or delete the shared access and this becomes a security risk. Our tools provide comprehensive information about all the shared files on a user by user basis.
  • Active directory requiring cleanup: Just like our homes, Active Directory needs regular cleaning , make sure to:
    • Disable the accounts of employees who are on long leave
    • Disable and then delete the accounts of departed employees
    • Disable the Administrator account when not in use
    • Keep the Guest account disabled
    • Delete unused user and computer accounts
    • Identify empty user groups and delete them (except default AD groups)

active

Removing inactive user accounts and computer accounts on a regular basis is essential to keep Active Directory free from threats of unauthorized accesses and intrusions.

  • Default or weak passwords: make sure your routers and other network devices are not accessible using default password. As inconvenient as it may be to enforce a password policy that meets some complexity requirements however here are some guide lines:
  • Account lockout: Account lockout (disabling an account after a number of failed attempts) significantly reduces the risk of an attacker acquiring a password through a brute force attack.
  • Password history: Short password histories allow users to rotate through a known set of passwords, thus reducing the effectiveness of a good password management policy. Increase password history to remember at least 6 passwords.
  1. Passwords must have at least six characters.
  2. Passwords can’t contain the user name or parts of the user’s full name, such as his first name.
  3. Passwords must use at least three of the four available character types: lowercase letters, uppercase letters, numbers, and symbols.

If you are not client of PerformaneIT we will be more than happy to run a network assessments and give you a free report or call at 678-323-1390. You can also visit our contact page to fill out a contact form.

Contact Us

Get In Touch

Please leave this field empty.