Cyber security tips: spring clean your digital environment

The digital world is more and more integrated with our everyday lives. But along with all the advantages it offers, dangers are also growing constantly in the digital space. Cyber attacks are increasing, and companies in different sectors are suffering the consequences. 

As spring arrives, many organisations are considering a digital refresh. However, it’s crucial to recognise that cyber security should not be treated as a seasonal affair; it demands continuous vigilance. Here are some key points to consider: 

1. Continuous monitoring: 

• What is it? Continuous monitoring involves constantly observing and analysing your company’s IT systems and networks to detect security threats, performance issues, or non-compliance problems in real time. 
• At CSG, we provide a Security Operations Centre [SOC] platform that is powered by Sophos MDR (Managed Detection & Response). This MDR doesn’t only notify you when a threat is detected, but the elite team of threat hunters and response experts take targeted actions and work to resolve any issues highlighted, thus diminishing any threats. 
• Why is it important? By identifying potential problems promptly, organisations can address them swiftly, minimising risks. 
• Domains of monitoring: 
  • Application layer: monitor application performance, including metrics like transactions, errors, uptime, and availability.
  • Infrastructure layer: observe compute, storage, network, and other physical devices to troubleshoot issues, optimise usage, and forecast capacity needs. 
  • Network layer: understand the status of firewalls, switches, routers and other devices, detecting bandwidth utilisation, packet losses, delays and intrusion attempts.  

2. Cyber security basics: 

• Confidentiality, integrity, and availability [CIA triad]: these principles form the foundation of cybersecurity. 
• Confidentiality: keep data secret and private. 
• Integrity: ensure data remains unaltered and accurate. 
• Availability: maintain access to systems and data. 
• Risk assessments: regularly assess risks to information technology assets. 
• Cyber resilience: partner with cyber security experts, like CSG, to move beyond mere security processes to actually build resilience against cyber threats. CSG has helped hundreds of companies protect themselves against cyber threats: from training 30 Park Place Chambers with Phishing Threat email tests to supporting the charity, Active Gloucestershire, with MFA [Multi-Factor Authentication] allowing them to work securely from anywhere. 

3. Frequency of cybersecurity reviews: 

• Annual reviews: organisations should conduct cybersecurity reviews at least once a year. At CSG we work with our clients to provide ongoing reviews either quarterly or monthly (depending on what our client requests). 
• Factors influencing frequency: 

• • Organisation size: larger organisations may need more frequent audits due to complex systems. 
  • Available resources: consider available resources for conducting thorough reviews.

Remember, cybersecurity is not a one-time event; it is an ongoing commitment to protect sensitive information and maintain a strong security posture. As spring arrives, many of us engage in the traditional practice of spring cleaning – tidying up our physical office spaces. But let’s not forget about our digital lives in work either! Just like a cluttered desk, our digital devices accumulate unnecessary files, outdated apps, and forgotten data.  

CSG’s spring cleaning checklist 

1. Update your work devices: 

• Update the apps and operating system on all Internet-connected devices – including PCs, smartphones, tablets, home wifi routers, smart TVs, and other internet-connected devices that can be updated – to reduce risks from malware and infections. 
• Delete unused apps. 

2. Tune up web browsers: 

• Check your browser settings. Clear out old data, such as stored passwords and old autofill information, and ensure your browser is set not to store passwords. 
• Delete unused browsers. 

3. Declutter your downloads: 

• Your downloads folder can become a graveyard for files you no longer need. Delete anything unnecessary to free up space and potentially speed up your device. 
• Organise important downloads into labelled folders for easy access. 

4. Tidy up photos and screenshots: 

• Review your photo albums and delete any images you no longer care about. 
• Back up important photos to an external drive or a cloud service like OneDrive. 

 5. Prioritise a strong password refresh: 

• Avoid using the same password for everything. Make unique and secure passwords for each account. 
• Regularly update your passwords and check if any have been compromised in data breaches. 

6. Unsubscribe from unwanted emails: 

• Go through your inbox and unsubscribe from marketing emails that no longer interest you. 
• Reducing email clutter improves productivity and keeps your inbox organised.

7. Secure electronic records:

• If you handle electronic health or care records, ensure they are stored securely.