Protect your employees, your customers, and your company’s data!

In our opinion ransomware is the #1 cyber threat to all our clients. We are focused on protecting our clients from these attacks. We follow ransomware news very closely and constantly adjust our standards based on the changing hacking tactics. Our security team’s main objective is ensuring that none of our clients are victims of a successful attack. Here are the steps we take to protect our clients

1. Bullet proof backups

The absolute first thing we do is deploy secure backups. Our backup standard is built on the assumption that the network will be breached, and the attacker will obtain full admin privileges. The backups must be able to withstand this. Our standards have been tested by multiple specialized security firms who were unable to access them.

2. Minimize your exposure

We minimise your exposure by making sure that only services that are absolutely necessary are exposed to the Internet. We will then limit these services exposure by only making them accessible to certain countries. We work with our clients to determine what this list is and will modify it as needs change.

3. Protect the infrastructure with advanced security tools

We deploy a set of advanced security tools that will not only protect you but will also alert our security team if something is not behaving normally.

4. Close the open buffet

Many networks are designed as a fortress or citadel. Once they are breached you can access everything, it’s basically an open buffet. We close this open buffet by segregating systems so that even if an attacker was able to get on a single system it’s very difficult to move to another. The more difficult it is the more chances are the attacker will make a mistake and set off an alarm allowing us time to respond to neutralise the attack.

5. Monitoring and response

We monitor alerts generated by our set of advanced security tools and investigate any abnormality. Our security will respond to any identified threat to neutralize the attack.

6. Train your users

We will train your users to adopt safer computing habits and to report abnormalities to our security team.

7. Adapt

We constantly adapt our approach as the threats and security tools evolve. We will also adapt based on the experiences of our peers. We meet with other companies like ours in different markets across North America to share best practices every quarter.

We have developed a backup security standard to keep backups safe from attackers who will look to compromise them in a ransomware attack. We built our standard with the assumption that the network will be breached and that the attackers will obtain admin rights. Therefore, we completely segregate the backups from the network and put in place their own authentication. Our offsite backups also have ransomware protection built-in which allows for recovery if ever they were to be deleted. Our backup standard withstood penetration testing by multiple specialized security firms. We adapt our backup security standards constantly as the attackers change their tactics.

Emails are one way or another part of most cyber-attacks because they work. Attackers will use a well-crafted email to steal a user’s password by tricking them into entering it into a fake site or will impersonate the CEO to try get a fraudulent wire transfer authorized. Protecting your email is essential.

The first thing we do is stop email threats from getting to your users. We achieve this by deploying a leading cloud email security platform. It will stop all emails that contain malicious files as well as ensure that all links in the email are safe. Additionally, emails that are designed to impersonate someone from your company either by using the same name as a colleague or a similar domain (example: s3ttech.ca instead of s3tech.ca) will be blocked.

The second things we do is to educate your users on safer computing habits. We also expose them to the latest tactics used by attackers with phishing simulation emails to keep their reflexes sharp.
Finally, we deploy our set of advanced security tools on your users’ computers and devices which will alert us if anything goes wrong. This way if ever an email threat does make it through our defences to a user, our security team will immediately investigate and remediate the situation.

Yes, you absolutely should. Unfortunately, even though we are very confident in our abilities to protect you against cyber attacks, nothing can be 100% secure. Insurance is an important part of your response plan.

The security standards that we deploy will make sure that you will be insurable, and we will help you answer all the questions the insurers will have, and they will have a lot. We can also help validate that the proposed coverage makes sense for your business.