Content on this page requires a newer version of Adobe Flash Player.

Get Adobe Flash player

Security

Security of your computer systems, networks and the data residing there is not only important, but in some cases a legal requirement.  I can help you sort out what you need to protect your important business assets.  Security doesn’t have to be confusing.  We can identify the assets most critical to your business and make sure they are properly secured and their integrity is maintained.

The terms information security and computer/network security are frequently incorrectly used interchangeably. These fields are interrelated often and share the common goals of protecting the confidentiality, integrity and availability of information; however, there are some subtle differences between them.  I can help you address both sides of system security.

These differences lie primarily in the approach to the subject, the methodologies used, and the areas of concentration. Information security is concerned with the confidentiality, integrity and availability of data regardless of the form the data may take: electronic, print, or other forms.
Computer/Network security is focused on making sure only authorized users and authorized applications have access to the computers and networks.

Computer/Network security consists of controlling access to your computers, network and networked resources. Computer/Network security systems today are highly effective if deployed properly.  The main concern in an office network is simply access to the network and/or computers.  In most cases there are three ways to access the network:

  • Physical access using a machine already on the network or plugging in with a network cable.  This is fairly easy to control and not a problem if there are no network jacks or computers located where outsiders can get at them.
  • Wireless Access Points. Wireless security has improved greatly since it first hit the scene.  Using encryption, authentication keys and SSID hiding, Wireless is ready for prime-time.
  • Gateways to Other Networks.  Usually the other network is the Internet, but it can also be a business partner’s network.  Access from one network to the other is controlled by a firewall and/or a network filters.  Many broadband routers have integrated firewalls.

 

Information security means protecting the information and systems that carry/store the information.  This is divided into several basic issues:

  • Confidentiality. Make sure the information is only accessible to authorized users.
  • Integrity.  Make sure the data isn’t changed by unauthorized users or accidentally lost or corrupted.
  • Availability.  Make sure the data is available when and where it is needed. 

 

These issues can be addressed by:

  • Limiting access to the computers/network
  • Requiring individual USER IDs and passwords for each user to access the computers as well as records management applications
  • Encrypting data
  • Keeping anti-virus software up to date
  • Running anti-spyware software
  • Making regular backups
  • Controlling access to external storage devices (FlashDrive, CD Burner)