Information Security for Media Producers
System continuity means business continuity. Keep your clients happy and your invoices rolling out by covering as many free and inexpensive information security controls as you can. Your high-value data is a ransomware target, but you can defend against the majority of attacks by taking advantage of simple, low-cost resources like these.
Access Controls
- define a password policy based on current recommendations
- implement 2-factor authentication on important accounts like email, banking, and shared storage
- deploy a password manager to generate and save long random passwords, and eliminate password reuse
- implement a policy of least privilege, especially in OS user accounts
Vulnerability Management
- inventory and patch your systems
- deploy a free vulnerability scanner like Nessus, MBSA, or Qualys FreeScan, and address major issues
Change Management
- implement least privilege on your OS user accounts
- deploy a free endpoint malware scanner like Sophos Home, Malwarebytes, or HouseCall
Data Recovery
- deploy automated backup tools like Crashplan or Backblaze
- make a plan for data recovery
Network Security
- implement simple network segmentation to keep systems in defendable networks
- implement strong wifi security
Additional Resources
- SANS work from home recommendations
- understanding data value
- NIST Incident Handling Guide