Get Quote

Must-Have Cyber Security Controls

Book a Consultation

We know everybody has filled out a cyber insurance application at some point. But the question is whether or not your business actually has those cyber security controls in place. The fewer you have these, the higher will your threat levels be.

If a claim happens, insurers will check and if you don’t really have what you say you have, your claim will be denied.

Employee Training for Cyber Security and Phishing Awareness

this is one of the most important things you should have. Not merely for compliance but for the security and reputation of your company. Remember that the biggest threats are ransomware attacks and those attacks are mainly targeting your employees. Hence, your employees must be continuously trained to protect your business.

MFA (Multi-Factor Authentication)

this is one of the top questions asked on most applications. What MFA does is provide more than one form of identification for your company data. It’s like opening a bank account or you’re doing a transaction with the government. Since you have potential access to sensitive information, they require more than one piece of identification. They may require 3 or 4 pieces of information for you to prove who you are. That’s the same thing that MFA does. Even if your username and password are compromised, a hacker still needs all the other additional information for them to access your data – that’s what MFA does for you.

Risk assessments

one that identifies workplace hazards and gives you steps on reducing or eliminating those risks. In the past, this has been done annually for most organizations. But this has been modified where insurers expect it more frequently or quarterly.

Regular back-ups

this is a no-brainer. If you get ransomware, your data is lost, and your system is compromised. What will you do if you don’t have a backup? 

There are two reasons why you really need to set up a backup for your business: 

(1) Recovery of your data and systems takes time. How long can you afford to wait to get your data systems backed up? Is it an hour? A day? A week? How much money can you afford to lose while waiting to go back to work again? These are the questions you need to ask based on your backup solutions to deliver your requirements. Because we talk to a lot of organizations, and they say they have a backup but they really need to think about what’s important about the backup. 

(2) Retention is needed because realizing you’re compromised is not immediate. How far back can you go in your backup if your system is compromised or your data is lost 30 days ago and you’re just realizing it now? Can you actually go back to that data prior to that 30 days and recover, or can you only get back a day or week of your data? About the breaches, they say it takes a company 190 days on average to identify they had a breach. So without proper backup, an insurer can cover the cost of cover, but you can’t recover something you don’t have.

without proper backup, an insurer can cover the cost of covering, but you can’t recover something you no longer have (which is lost data)”

Email Security and Web Filtering

Remember, emails are the gateway to cyber threats, so these are important cyber security controls to have.

Endpoint Protection (EDR)

a lot of people think that an EDR is an anti-virus, but it’s not. EDRs have features that address wider security threats. The difference is like trying to look at a horse-drawn carriage and a sports car that we have today. It’s no comparison. They’re two different technologies. So, if you are not using EDR and only anti-virus, your threat levels are gonna be a lot higher. 

PAM or Privileged Access Management

this is not the same as just logging in to a computer with just a username and password. What PAM does is that it actually addresses who you are, what you’re accessing, when you’re accessing, and where you’re accessing it from. It’s an advanced level of monitoring how your employees are interacting with your company and your company data. 

Logging & Monitoring (SIEM or MDR)

this allows you to have a real-time monitoring analysis of events as well as tracking of security data for compliance and auditing purposes. 

The most important takeaway for all of these is that security is not about each of these items but putting of all them together to solve a problem. 

Predicting cyber threats is like putting a puzzle together. You have to have all the pieces to complete the puzzle. An IT support company may have knowledge of one or two of these controls, but a security-focused company will understand all the pieces and know how they fit together. 

I hear too many conversations where “I have IT support” but the question is, “Do they have the knowledge of true security which you really need when you deal with cyber or any other compliance requirement?”

“…security is not about each of these items but by putting of all them together to solve a problem.”

Email security assessment

I mentioned email. Go to this web address, and it will give you a score on the security of your email. You go in, put your email address, and submit it. It’s going to send you an email and you’re gonna reply back to it. 

The reason for this is it will score your vulnerability in your outgoing email, and your vulnerability email for your incoming email. 

If you get a score of less than 800, reach out to me because we have some work to do. That’s actually our company’s score up there, 850. That is phenomenal for an organization. I don’t expect you to get that but I expect you to get close to that. 

Everyone is bombarded by these phishing emails. That’s the most common way threat actors get into a system and is the root cause of an enormous amount of incidents. It’s a smart thing to be looked at.

Get Cyber Insurance Consulting

Get Cyber Warranty from Troinet - Call 718-761-2780

Cyber Warrant Services New York

What our customers and partners are saying:

The response time of the Troinet team is amazing! During the most recent storm (Isaias), our Eltingville office lost most of its power for several days. Our server connection was initially lost and we were in a panic! Troinet worked quickly to get our server up and running and we were able to use the power we had to connect to our scheduling software. This permitted us to contact our patients and alert them of our situation and reschedule their appointments. Troinet sets the standard in efficient, responsive and professional customer sevice!
Richmond DentalDentist in New York City
<a href="https://www.google.com/maps/contrib/115187434790467032048/photos/@40.59446,-74.098352,17z/data=!4m3!8m2!3m1!1e1?hl=en-PH">Richmond Dental</a>
I have dealt with Troinet for over 10 years. They can solve any problem presented to them and are always available upon call. I could not give a higher recommendation than an educator’s form of rating. Troinet receives an A+ .
J. Anthony FoderaSt. Peters Boys HS
<a href="https://www.google.com/maps/contrib/117028712283509256479/reviews/@33.3111028,-83.1107247,5z/data=!3m1!4b1!4m3!8m2!3m1!1e1?hl=en-PH">J. Anthony Fodera</a>
The team has been quite helpful during the COVID-19 Lockdown. They have allowed the process of working from home seamless.
Leonie WardLenox Road Baptist Church
<a href="https://www.google.com/maps/contrib/118076794091820556486?hl=en-PH&sa=X&ved=2ahUKEwiSluOrkPD0AhVBBt4KHeytCucQvvQBegUIARCnAQ">Leonie Ward</a>
I was lucky enough to work with Troinet on several projects involving the local Chamber of Commerce, where I was a Director. He is straightforward, honest and accurate in his assessments and recommendations. His expertise, not only in technical areas, but also in marketing and sales makes him a valuable asset to any organization.
Wayne MillerFilm, Stage, TV Actor, and Director
<a href="https://www.linkedin.com/in/millerwayne/">Wayne Miller</a>
Wayne is a childhood friend whose had a passion for technology. This passion and knowledge is the foundation of his company. I've consulted with Troi.net on several different projects. Their level of expertise and professionalism was beyond what was expected. I would definitely recommend Wayne and his company for anyone looking for Systems/Networking Integration expertise.
Eric AmersonLead Development Manager at TIAA-CREF
<a href="https://www.linkedin.com/in/eric-amerson-6481b41/">Eric Amerson</a>
I've thoroughly enjoyed working with Wayne. He is a great communicator and presenter, and he has helped Libraesva grow it's footprint in the greater New York area. We teamed up almost 1 year ago when there were local school districts in need of our solutions. He made sure those deals progressed and closed smoothly. Since then, he and his team orchestrated marketing campaigns to grow our mutual business and develop new leads. Troinet has been a great partner for us and our clients, and I believe we will continue to have great success together in the long-term.
Chris PelusoHead of Sales in North America, Libraesva
<a href="https://youtu.be/L7YTm833XLU?t=112">Chris Peluso</a>
We've been working with Troinet for many years now and they've provided us with really exceptional services and support with our technology needs here in school.
Julie GreenDirector in E.L. Haynes Public Charter School
<a href="https://youtu.be/DIyC3d4kKnU?t=2">Julie Green</a>
Troinet implemented a cost-effective network that has revamped our computers practice of managing pertinent business documents.
Sandy KruegerCEO, Staten Island Board of Realtors
Sandy Krueger
We've worked with Troinet for 5 years and in that time we have switched buildings several times and we just got our brand new network here in town and well be beginning another building next year and Troinet helped us with all these transitions seamlessly.
Bethany MolitorOperations Manager, EL Haynes Public Charter School
<a href="https://youtu.be/DIyC3d4kKnU?t=55">Bethany Molitor</a>
Wayne is a strong business leader and mentor. He is thoughtful and innovative in his thinking. I learned a lot about business, technology and people in my time working with Wayne. I'm often amazed at his ability to see the trends long before they come to fruition, for example, Wayne was discussing work from anywhere 7 years ago, when that was still taboo in many lines of business. The lessons learned while working with Wayne have helped me become a successful professional. He cares about his clients and his business and always works towards delivering the right solution to solve the problem.
Justin ShadeClient Technology Manager
<a href="https://www.linkedin.com/in/justin-shade/">Justin Shade</a>
TroiNet has always been about quality and fast responsiveness, I have always appreciated Wayne and the team for that. The aim is to provide the customer the best resources they need while keeping the overhead cost down. Definitely a good value for any small organization struggling with technology support operations.
Angel RiveraSenior Manager at WW
<a href="https://www.google.com/maps/contrib/115161997203826016561/reviews/@40.59446,-74.1005407,16z/data=!3m1!4b1!4m3!8m2!3m1!1e1?hl=en-PH">Angel Rivera</a>
Previous
Next
Schedule an IT assessment with Troinet

Share this post:

Picture of by Wayne Roye

by Wayne Roye

Outsourced IT Solutions Expert, Computer Engineer | Book an appointment | Contact

Get in touch
  • Post modified:  December 15, 2023

Transform your business with our cutting-edge IT solutions.

Contact Us

Schedule a Consultation