About Us
IT Services
IT Security Essential 8
The Essential 8 is an Australian Cyber Security Centre (ASCS)-developed framework comprising eight cybersecurity strategies. Its purpose is to provide organisations with essential protections against a multitude of cyber threats.
The Essential 8 acts as a baseline from which organisations and businesses of any type or size can develop a thorough, comprehensive cybersecurity position. It focuses on strategies to reduce the risks of cyber incidents resulting from various malicious activities including:
- Malware infection
- Unauthorised information disclosure
- Data loss
1. Application Control
The first line of defence in any cybersecurity strategy is application control. It helps to prevent the execution of malicious or unauthorised software applications. By allowing only approved programs to run, organisations can dramatically minimise the potential for malware infection and data breaches.
The process involves developing a whitelist of authorised applications essential to the operations of the business. All other unapproved applications instantly get blocked by default. To successfully implement application control, you’ll need to conduct a preliminary audit of all software the organisation uses to make sure that only necessary and trusted applications get approved.
2. Patch Applications
Experienced cybercriminals will typically exploit vulnerabilities in software to create a pathway into your system. Regularly patching applications helps to fix any known and identified vulnerabilities, which helps to minimise the risk of exploitation.
Organisations will benefit greatly by developing a patch management process that prioritises patches based on the severity of application weaknesses and the overall importance of the program. Automating the patch activation process helps to ensure the consistent application of patches and lessens the administrative burden.
3. Configure Microsoft Office Macro Settings
Cybercriminals will often maliciously use macros to run code and deploy malware. By controlling macro settings – particularly in Microsoft Office documents – organisations can stop the unauthorised execution of code on their system.
The recommended approach to configuring Microsoft Office macro settings is to disable them from running in Office documents online. If you have macros essential to running your business, have someone vet them and approve them on a case-by-case basis.
4. User Application Hardening
This involves setting up web browsers and other programs to reduce the attack surface. Disabling extraneous features and functions can stop breaches in your system.
Workable strategies include:
- Disabling unneeded browser plugins
- Using ad-blockers to stop malicious advertising
- Disabling Java, Flash and web ads on internet-facing servers (where possible)
5. Restrict Administrative Privileges
Administrative accounts can make major changes to networks and systems. Should the account become compromised, it can pose a significant risk to your organisation. Keeping admin privileges to only those people who need them to carry out their daily roles will lower the potential for malicious usage.
Put in place a policy of least privilege. This will make sure that users have only the necessary authorisations to carry out their roles. Routine audits and consistent monitoring of administrative privileges can also be effective in detecting and stopping misuse.
6. Patch Operating Systems
Similar in nature to application patching, operating system patching is essential to safeguard your organisation against OS vulnerabilities. You can easily stop many cyber attacks in their tracks with timely operating system patching.
Formulate a process for regular operating system updates and patching. Always prioritise critical patches above others. You can even smoothen the process with automation tools which ensure that your systems always remain up to date.
7. Multi-factor Authentication (MFA)
MFA provides your system with an added layer of security beyond a mere password. It’s a system that drastically improves security by requiring a secondary form of verification.
Probiti recommends implementing MFA across all systems in your business, particularly for:
- Accessing sensitive information
- Remote access systems
- Privileged accounts
8. Daily Backups
Data loss can happen to any business, whether it’s the result of a cyberattack, hardware failure or simple accidental deletion / human error. For as smooth and (relatively) stress-free a recovery of that data as possible, regular backups are essential. Keeping your backups up-to-date, secure and recoverable is a must to maintain business continuity.
Implement a backup strategy that includes daily backups of essential data and information. Store your backups securely both on and offsite. Test your backups regularly to make sure you can restore them if necessary.
It must be said that there is no cybersecurity measure that is capable of guaranteeing complete protection. However, by putting the Essential 8 in place, you’re taking a proactive step towards drastically minimising any cyber risk to your business or organisation.
It’s important to assess your specific IT security needs and make any necessary adjustments to the Essential to accommodate your requirements. Regularly review and update your security practices as cyber threats continue to evolve. And they will evolve.
Cybersecurity is an ever-changing process. The Essential 8 provides a strong foundation upon which your business can develop a thorough and effective cybersecurity strategy. And Probiti is here to help you, every step of the way.
