E-CommerceALERT.com is part of the Bennett Gold LLP web site network.
LINK TO: Bennett Gold LLP, Chartered Professional Accountants, home page.
LINK TO: E-CommerceALERT.com Home Page.
CLICK to GO BACK to Main Page.

Research and retrieval of news articles by:
Bennett Gold LLP, Chartered Professional Accountants

Effective December 31 2012, articles are no longer being updated on this web site.
The site is now maintained as an historical archive, covering notable e-commerce news articles from the period 1999 to 2012.


Source: Tech Republic

Posted on January 13, 2008

      This article is sure to incite some debate as I could have easily listed ten or more steps a small business should take in terms of security. Some might disagree with the three IÕve selected here-and thatÕs ok. Anyone reading this blog will hopefully get the point, which is that security can be complex, especially if youÕre a small business-but you have to start somewhere.

      Where do you begin if youÕre a lawyer running an office with six computers? Or a doctor who has a nurse running the "IT Stuff." You might not be able to afford everything under the sun, or that pricey consultant or that expensive managed service. But that doesnÕt mean you donÕt still have security concerns.

      If youÕre a small business, please view these steps for exactly what they are: a starting point - simply an organized place to begin. These are the absolute bare minimum, basic, no-brainer, and got-to- have things! If you know someone who has a small business, send him or her this blog.

      The three most important security steps a small business should take are: Antivirus Software; Firewalls; OS Patching. LetÕs dig in:

Antivirus software

      Please raise their hand if a virus has infected your computer at some point. Now take that hand and go purchase some Antivirus software for all the PCs in your small business! YouÕd be surprised (I always am) about how many people still miss this basic fundamental step. Many times I also find that while folks have no problem buying and installing the software they canÕt seem to keep it up to date. Maybe their subscription ran out, or they have the software configured incorrectly, but it isnÕt updated with the latest virus definitions (those would be the antidotes to the virus, for the lay reader). Always ensure your small business has Antivirus software and that it is up to date.


      The typical small business will have DSL or cable for Internet access. With almost all of these connections you will be provided with a small firewall like a D-Link or Linksys brand appliance. These firewalls are given to you for a reason. They are better than nothing, I will grant you that, but they are not the most robust firewalls in the world, and in many cases they wonÕt provide the small business with adequate protection.

      A sensible investment for a small business is a higher-grade firewall, preferably an application layer firewall (see wikipedia.com for an explanation of application layer firewalls). Better yet, a Unified Threat Management (UTM) appliance offers companies multiple edge-of-your-network security features like network-based Antivirus, intrusion prevention, and anti-Spam. See this whitepaper on TechRepublic.com for more information on UTMs. A UTM can be an effective means to maximize your security without completely whipping out your budget.

OS patching

      ThereÕs a good chance your small business runs Microsoft products like Windows XP and Microsoft Office, and so on. If it does, you may be vulnerable. MicrosoftÕs operating systems are a big target for hackers for several reasons, not the least of which involves their popularity. Everyone picks on the popular OS, and thereÕs also the fact that, historically, theyÕve had many vulnerabilities. And until that changes, Microsoft will continue to release security patches on a monthly basis that close these vulnerabilities. They key is to make sure your Microsoft products are up to date and have the latest patches. One important thing to consider is making sure those patches donÕt break any of your applications. You may wish to deploy the patches to one or two of your computers first to make sure they donÕt cause any major problems before you role them out en masse.

Final thoughts

      Ok, I know. The savvy IT guy reading this article is all fired up right now. HeÕs got thirteen other things to add to my list. For all you small businesses, check out the other tips from the experts in our midst. Use these suggestions as you budget for IT security and make practical decisions about how to improve your small businesses security. ItÕs my belief that some security is better than no security, so start small, do what you can, and budget/plan for the future.

      By Jeremy L. Smith, who writes about IT security and Microsoft Products

CLICK to GO BACK to Main Page.

E-Commerce Alerts are issued by Bennett Gold LLP, Chartered Professional Accountants as situations develop. Bookmark this site and check back often. Our e-mail address is: info@BennettGold.ca

In accordance with United States Code, Title 17, Section 107 and Article 10 of The Berne Convention on Literary and Artistic Works, the news clippings on this web site are made available without profit for research and educational purposes.

Final Entries

LINK TO: Bennett Gold, Chartered Professional Accountants: A Licensed Provider of WebTrust Services.

WebTrust Is Your
Best Defense
Privacy Breaches.

Get WebTrust
Working For
Your Site.