28 okt Cybersecurity, protecting your business from criminality: 8 tips.
Cybersecurity, protecting your business from criminality: 8 tips.
October is Cybersecurity Awareness Month, the perfect time to reflect on the security of your data. That is why we had a talk with Kris De Bisschop, managing partner at GroupWave and passionate about cybersecurity! In the spirit of ‘better safe than sorry’, we asked Kris to share some interesting tips & tricks on how to avoid data leaks and improve your security.
Kris always had a keen interest in security within the broad definition of infrastructure. This interest and passion led him to test with the various security functionalities of Domino, even to the point that he wrote some interesting documentation and blogs about this subject.
As participant in the Security Panel during the launch of Domino V12 and as participant of the Security Round Table at Collabsphere it’s without a doubt that Kris is the perfect person to share some tips & tricks on cyber security.
A cyber-attack, so what?
Cybersecurity attacks are ubiquitous and can lead to many problems. Leaking Sensitive data, such as personal data, can have a big impact on your company but it’s not the main goal for hackers. “Hackers are no longer concerned with getting hold of your data. They do it for the thrill of gaining access to all your internal systems and exposing your security issues. That leads to reputational damage and can have a huge business impact,” says Kris.
So what can you do to optimize your cyber security?
- Authentication is important.
HCL Domino V12 strongly focuses on making your applications available anywhere, anytime. Of course, you want to give your users access to your data and/or applications in as many ways as possible. There is nothing wrong with that, given that you provide sufficient authentication. Less anonymity means fewer possibilities for security breaches.
- Provide multi-factor authentication.
While authentication is important, limiting authentication to a username and password is simply not enough. You need to provide an extra check so users must confirm their identity via, for example, a code on their phone. It isn’t always easy to implement multi-factor authentication into your application. Luckily, Domino has built-in multi-factor authentication functionalities, meaning that you can enable it by the push of a button. Cost-efficiency to the max!
- Use SSL certificates.
Enabling a secure connection is more important than ever! By introducing HCL Nomad Web, you can access your applications via your browser. To guarantee a secure connection, you need to make sure that you make use of SSL certificates. These SSL certificates ensure your internet connections are secure and it prevents criminals from reading or modifying the information that is transferred between systems.
- Check your servers.
At Domino there are different layers of security that you must go through to access certain parts of your application. Authentication as you enter the server is important, but Domino doesn’t stop there. Domino continuously checks whether the user has the correct rights throughout every action they take. The best thing is, this all happens in the background, so no need to log-in multiple times during your session. User-friendly? Check!
- Rights management.
As mentioned in the previous tip, rights management is a crucial part of creating a secure environment. Make sure that you have an organizational overview of who has access to the different levels of your application and how you are going to classify them. For example, are you going to work with specific groups or rather with individual profiles? A beautiful example is an HR application for instance. The HR department can access and edit all the data within the application. You, as an employee, can only access certain fields like address, marital status or phone number. Adjusting your wage is definitely a no go!
In Domino, you can easily determine those rights on the level of individual fields. In comparison to other technologies, where you often have to go through all kinds of detours to reach the same settings. This not only results in additional costs, but also a greater margin of error and vulnerability.
- Choose a Domino partner who considers security of paramount importance.
At GroupWave, security is a top priority. Our goal is to unburden you as much as possible while you can rest assured that your security is airtight and that you can focus on your core business. We for example always start with an analysis of your configuration to make sure everything is sufficiently secured and keep an eye on the maintenance of your SSL certificates.
- Choose safe third-party tools.
It makes no sense to bet on security when you work with integrated tools that are unsafe. That is why a good reliable partner who can help with integration and has knowledge of both parties is important. That’s why we not only focus on application development at GroupWave but also on system engineering. “Building an application is the first step, making sure it runs in the right environment in a safe way is crucial.”
- Create awareness about cybersecurity within your organization.
You can have great security, but if your people are not informed, you’re still at risk. Security is a shared responsibility across your organisation. Cyberattacks happen every day. It doesn’t matter if you’re a small or large corporation, everyone can be a target. “Thinking that it won’t happen to you, is wishful thinking and a dangerous attitude,” says Kris.
With these concrete tips you can ensure that your risk of a security breach is as small as possible and that you create a safe environment in which your organization can work.. Are you still looking for additional information? Contact us and we will be more than happy to help you