If you come to this article, it may be because your company was currently the victim of an attack or one of your employees caused a security vulnerability. If this is not the case and your company seeks prevention, I congratulate you, few companies worry about this until they find themselves in need of adapting it. Throughout this article we will detail the steps to follow to implement a cybersecurity action plan, so take note.
- The first point is to analyze the current situation of your company. For this, it is important to list the threats that exist in your company and the security actions or measures that can be implemented to avoid them. Each threat must have a risk level to help us prioritize its implementation. Deliverables of this activity: List of threats with mitigation actions and risk level.
- The second point is to define the security team. At this point it is important to select the personnel that will be part of the company’s security team, if you currently do not have a security team, but if you do have a technology team, our recommendation is to generate training for each employee aimed at various specializations. in cybersecurity. If you are a company that does not have a security team, do not worry. Currently, there are consultancies that can support you with this task or software that can help you monitor network traffic, helping to detect suspicious activities in your company. Deliverables of this activity: List of employees with their activities to cover at the security level. In the case of a company that does not have technological equipment, it is important to define the technological provider that will be supporting you or the automated software that will carry out these activities.
- The third point consists of carrying out a technological evaluation of the company. In this third point it is important to make a list of each of the company’s systems and its external components that make it up. The main objective of this list is to be able to identify the necessary updates for each system. This point is high risk given our experience, since 65% of the sites are implemented with WordPress (W3Techs study), and do not misunderstand my comment, it is a high quality CMS, but by providing functionality with external components these increase the risk of suffering any security attack, which is why updates to these components are constantly being released. Software development is not spared from this either, since currently, to speed up development, external components that comply with basic functionalities in the systems are used, concluding with the same vulnerabilities. Deliverables of this activity: List of company systems with the external components they use, their version and last update date.