Top security tips and guidelines to keep your network and assets secure.

Keep it simple, safe and secure.

1. Protect and encrypt sensitive data. Never store/save client data unencrypted.

2. By default - don’t save sensitive data that’s not needed.

3. Avoid phishing scams - beware of suspicious emails, links, files, phone calls.

4. Be careful with what you click - for example - someone sharing a great investment opportunity or client feedback via Google Drive - don’t click.

5. Never leave devices unattended.

6. Don’t use public/unknown WiFi.

7. Always use 2FA. Don’t use SMS as 2FA, as it’s prone to SIM Swap attacks.

8. All new services, software, accounts, etc. should be reviewed - conduct due diligence.

9. Follow the Principle of Least Privilege, Permissions and Visibility - code repos, S3 buckets and similar should always be defined as private.

10. Refresh passwords and remove user accounts that are default or not in use.

11. Report any suspicious behavior and indicators - communication is key.