#4 Secure applications and data on-site
It’s important to secure applications and data not only centrally, but also where they are located. For example, consider endpoint protection for devices outside the corporate network. This can be done via Microsoft’s Intune Mobile Application Management, which you can also apply within Workspace 365. Because business applications are managed with Intune, it no longer matters whether a device is personal or not.
#5 Protect your cloud landscape
The cloud is generally more secure than on-premises applications and data. Nevertheless, it is vital to take cloud security seriously, for example by making sure you don’t show sensitive information to people who have no right to it.
#6 Establish and update security policies
A solid security policy is the foundation of your cyber security. Policies address, among other things, remote access to applications, password guidelines, incident response, physical security, and rules for the use of, for example, social media and e-mail encryption. As an organisation, it’s important to get an ISO certification, for example, which looks at setting up, managing and improving processes in the organisation. This audit is done every year to organisations. After all, both cyber threats and one’s own organisation are constantly changing.
#7 Review frequently used applications
Always test frequently used applications against security policies. For example, should Multi-Factor Authentication settings be changed? Should access for specific roles, devices or networks be restricted via Conditional Access? Are the permissions for and access to applications and information all up to date?
#8 Special focus on digital communication
With hybrid working, employees make greater use of online communication tools such as e-mail and Microsoft Teams. Things like phishing and sending files pose additional security risks. Moreover: the more digital communication takes place, the higher the risk of data leaks. The security of digital communication therefore requires special attention, e.g. measures such as periodic training.