Web of Security

If there’s one word buzzing around in the minds of most serious Internet users, it’s security. Virtually every computer owner over the age of 12—and many younger—have at least a vague understanding of viruses, spyware, malware, worms, and other possible security breaches, as well as an understanding that such intruders can cause the destruction of a computer.

But the topic of computer security usually involves the realm of individual consumers. In business computing, all too often employees turn a blind eye to security concerns, convinced that someone farther up the chain is looking after it. Trouble is, that isn’t always the case. Businesses are every bit as vulnerable as individual users, maybe more so.

The greatest threat to businesses comes not from viruses that keep computers from functioning, but from information-stealing software—code that can find, take, and distribute confidential data. Private information in the wrong hands can mean headaches, liability, even the end of your business.

The Minnesota security breach notification law requires businesses to notify anyone whose personal information has been disclosed without authorization.

Traps to Avoid

Fortunately, many security-related mistakes are common across industries and business sizes—and so are the solutions. We surveyed a number of Twin Cities experts and came up with a list of security dos and don’ts for your business.

››› DON’T be indifferent to security related to any application. Even the lowliest word-processing program can pose a threat if it’s not used correctly. Keep in mind that some information absolutely needs to have a tight lid kept on it, no matter which application it’s contained in.

“The most significant problem we see is the lack of understanding people have of the degree and number of risks—both internal and external—that a business can be exposed to with any application,” says Greg McGee, director of business strategy for online strategy and development company B-Swing in Minneapolis.

Anne Garlock, product manager of Internet services for Eschelon Telecom, Inc., in Minnepolis, also warns of maintaining too narrow a focus when it comes to security. “When you’re looking at Internet security, all areas of the business must be reviewed, including e-mail, Web—and that means Internet and intranet—and other applications,” she says.