How to Manage Vulnerabilities of Information Systems to Security Incidents

Examine the physical security of your network. All critical data storage, servers and network equipment should be in secure rooms or closets. Only authorized information technology personnel should have access to these spaces. In addition, be sure the spaces have adequate sensors for fire and flooding, suppression systems and emergency backup power in case of a power loss.

Secure the perimeter of your network against outside vulnerabilities. Put border routers and firewalls with strong security policies anywhere your network touches an outside network, including the Internet. Be sure these are constantly monitored and set to send alerts to emails and cellular phones in case an intrusion is detected.

Install virus-scanning software on every computer in your network. While a good security policy prevents users from introducing outside software without written approval, the reality of the situation is that most users will still put disks and CDs from home into work computers. A good virus scanner on each computer will detect threats introduced internally quickly, making containment easier and minimizing impact.

Develop a good backup and recovery plan. Despite all the best planning and minimization of risk, incidents can occur. Minimizing the impact of these incidents depends on having good backups of critical data and a recovery plan in place. Data loss and downtime equate to dollars lost, sometimes millions per hour, so returning to full operation in the case of an incident is critical.