Feeling like you don’t have any control over security in the cloud? Think again. The truth is whether you’re managing your IT in-house or working with a third-party cloud services provider, there are a number of steps you can take to ensure your data and information remains safe in a cloud environment.
And I’m not talking about architecting an advanced cloud infrastructure. Here are five simple security practices you can employ to keep your firm’s information protected.
- Patch applications such as Adobe PDF viewer, Adobe Flash Player, Microsoft Office and Java. Using the latest versions of these applications – and patching within two days – will help to prevent high-risk vulnerabilities. The same goes for your operating system.
- Minimize the number of users with domain or local administrative privileges. Such users should use a separate unprivileged account for email and web browsing.
- Employ application white-listing to help prevent malicious software and other unapproved programs from running. Examples are Microsoft Software Restriction Policies or AppLocker.
- Use a host-based intrusion detection/prevention system to identify anomalous behavior, such as process injection, keystroke logging, driver loading and call hooking.
- Provide user education regarding Internet threats and spear phishing socially engineered emails. Avoid using weak passwords, password re-use, exposing email addresses, and use of unapproved USB devices.
To learn more about cloud security, revisit these Hedge IT articles:
- The Biggest Security Threat to Your Firm Might Be Sitting Next to You
- Doing Your Cloud Homework: Answering Legal, Tech & Security Qs
- Extra, Extra! Cloud Security Alliance Releases New Guidance
Photo Credit: Alphabyte
- New Considerations for Launching a Hedge Fund: Insights from the experts
- Corporate Essentials for Successful Hedge Fund Startups
- Recapping a Busy Week in Cyber Security Across the Globe
- What Do Hedge Fund Investors Ask About IT? A Technology DDQ cheat sheet
- Webinar Recap: What Investment Firms Need to Know about Social Media Compliance
- business continuity planning
- cloud computing
- data loss prevention
- disaster recovery
- eze castle milestones
- hedge fund due diligence
- hedge fund marketing
- hedge fund operations
- hedge fund regulation
- help desk
- high frequency trading
- launching a hedge fund
- privacy compliance
- project management
- real estate
- startup & relocation
- trends we're seeing
- videos and infographics