There are three basic threats to digital security.

1. Network Attacks.
   1. Denial of services attacks flood networks with overwhelming number of messages.
2. Intrusion.
1. Password breaches.
2. Add, change, and/or delete data and/or applications.
3. Malicious Code.
1. Viruses and Worms.

We can implement three quick fixes to protect your company.

1. Secure, Monitor, and Test the perimeter.
   1. Firewall
   2. VPN
   3. Virus Detectors
2. Lockdown individual computers.
   1. Install antivirus
   2. Turn off unneeded functionality.
   3. Turn on automatic update (not on servers).
   4. Configure computers and software in a secure mode.
3. Communicate and enforce policies.
   1. No unapproved applications.
   2. No P2P file sharing.
   3. No instant messaging.
   4. Monitor security bulletins from vendors.
   5. Checklist readily for when employees leave.
      1. Passwords
      2. VPN access

Over time, we can implement a proactive approach that builds eight processes that mitigate the likelihood of attacks and damage.

1. Identify data, applications, and networks critical to your business.
   1. How much protection does each deserve.
2. Identify who can use your data, applications, and networks.
   1. What safeguards are required before an employee can connect.
3. Control access in line with your choices in process 1 and 2.
   1. Configure firewalls, authentication, and encryption.
   2. Monitor the use of your IT systems.
4. Insist on secure software from vendors and implement appropriate security.
5. Know what software is running on your computer systems.
   1. Track versions and fixes like inventory.
   2. Patch software flaws quickly.
6. Test and benchmark against security standards.
   1. The bad guys can always get in.
7. Rehearse your response.
8. Log and analyze the root cause of security breaches.