Yahoo announced a security breach late last year, totaling over a billion compromised accounts. According to The New York Times, critics said the internet company giant “has a long way to go to catch up to these threats.” Not only must companies better their cybersecurity, users must be proactive about changing their passwords and setting up authentication tools.
We asked eight entrepreneurs, in the wake of recent cyberattacks, how they are actively strengthening their company's cybersecurity. Check out their answers below and make sure that cyber security is a priority for your startup:
Keep Firmware and Firewalls Updated
I have my tech support team stay on top of all updates to help strengthen the security of our online presence. They actively pursue the latest firmware and updates to ensure that we're protected on all fronts. We also have a policy in place to change passwords frequently for each employee.
– Nicole Munoz of Start Ranking Now
Use a Password Management System
We ask everyone to use a password management system such as 1Password or Dashlane. I've also used systems such as Okta to manage permissions. Finally, we train employees to never share passwords over email, Slack or other written communication forms.
– Adelyn Zhou of TOPBOTS
Invest in Bank-Caliber Protection
We take privacy and security very seriously. As a fintech company, we deal with a lot of sensitive information, so we work with trusted, bank-caliber providers on par with other online investment platforms. We've also hired engineers with experience building digital infrastructures at big companies that have scaled to hundreds of millions of dollars in revenue.
– Nav Athwal of RealtyShares
Disable Access for Terminated Employees
As soon as we terminate an employee, we disable their access to keep our accounts safe and secure. This removes any temptation on their end and allows us to lower the possibility of a cybersecurity issue in the future.
– Daisy Jing of Banish
Make Security Easier
We design our systems for security, but it’s still too easy for non-expert clients to put themselves at risk. It’s not enough to provide the tools for building secure platforms. We have to make it easier for clients to implement secure solutions. We’re considering how to better make use of two-factor authentication, certificate-based logins and proactive security analysis.
– Vik Patel of Future Hosting
Hire a Hacker
The best way to determine what potential security breaches you may have is to hire a hacker who has experience identifying and exploiting loopholes. We have hired independent contractors who provide this service and give us recommendations to improve security.
– Marcela De Vivo of Gryffin
Monitor How and Where Your Information Is Used
I recommend that everyone starts monitoring online mentions of their personal name and brand. It's not just data leaks and breaches you need to worry about. It's also where, when and how your information is being used elsewhere. Google Alerts is a good start, but there are plenty of premium solutions also available.
– Zac Johnson of Blogger
Have a Rapid Response Plan
While prevention is key to online security, it’s also important to have plans in place so you can respond immediately in the event of any breach. This includes disclosure, something that has come into question in recent breaches.
– Sam Saxton of Paragon Stairs
Young Entrepreneur Council (YEC) is an invite-only organization comprised of the world's most promising young entrepreneurs. In partnership with Citi, YEC recently launched BusinessCollective, a free virtual mentorship program that helps millions of entrepreneurs start and grow businesses.