How To: Reduce Your Business Vulnerabilities

Microsoft's newest operating system in more than five years, Windows Vista, became available to businesses with volume license agreements on November 30. The home version will be available on January 30, 2007. If you plan to, or have recently installed a new operating system on your computers, then it's a good time to review some security measures to reduce your vulnerabilities (no matter which operating system you use):

Create a security plan: Though upgrading to a new operating system (OS) appears to be a simple process, it is important to note that you are making a change in your business' IT systems, so it's necessary to protect your current data and other assets in the process. Your systems are particularly vulnerable at a time when you are running a new operating system that may have "bugs" or other issues that are likely to be discovered only after people start using the OS in a variety of settings. At the same time, you shouldn't have to wait to take advantage of the latest improvements and developments in technology. You can make a smoother transition by creating a security plan that includes installing security software, updating patches, and re-educating your employees about pertinent security issues that arise.
 

Install patches: Patches and updates can be found on vendors' websites and are particularly useful when a new product is released. Many people will use a product such as Windows Vista when it is first released, and any problems that arise will usually be dealt with immediately in the form of patches. You should also check for any news updates to stay informed and install patches as they are released.
 

Update security software: Even with the use of patches, the possibility of more vulnerabilities existing makes it important to have security software such as firewalls and antivirus installed and running on your computers at all times. In addition, when you install a new operating system such as Vista, you should install newer versions of security software that are compatible with the new system for optimum protection. If you are currently under a contract with a vendor, you may be able to get upgrades as part of your agreement.
 

Create a layered security solution: A layered security solution helps deal with malicious code threats and security breaches that can occur at any level. Install security software at each level of your infrastructure — at the gateway, mail server, and desktop tiers. This way, IM threats that bypass the mail server and company firewalls are dealt with at the desktop tier. In addition, a layered security solution can also help deal with another type of situation -- if an employee disables antivirus on the desktop, the protection at the gateway tier can help thwart a security breach.
 

Embracing new technology such as Microsoft's Vista can help you enjoy many new benefits, but at the same time, new software can introduce new vulnerabilities to your business. By following the precautionary measures mentioned in this article and staying informed of security issues, you can help reduce your business vulnerabilities.

from Symantec