Cybersecurity, Risk Management
Five Best Cybersecurity Practices for Properties and Companies By: Alec Burchett, BOMA Georgia Research from Gartner Inc. predicts that global cybersecurity spending will hit $170 billion by 2022. As this market grows, it makes sense to reason that the dangers in not observing proper cybersecurity habits are growing as well. To help combat these dangers, here are some of the 5 best cybersecurity practices for properties and companies from Fred Gordy, the director of cybersecurity for Intelligent Buildings, LLC.
1. Education
Whenever leaving an office or workstation, the computer should be locked and require a password to log back on. Even if only leaving for just a few minutes. If a computer screen is visible from a first-floor window, blinds should be closed when confidential information could be displayed.
4. Be Wary of Public Networks
Arguably one of the most important aspects of cybersecurity, education is a simple and easy way to avoid a lot of potential issues. If a company is not properly educated on cybersecurity risks, issues will start to arise. These cyber threats do not just pertain to a potentially losing data but could also ruin customer relationships and place the company into legal trouble.
When working outside of the office, one should take precautions when using public networks. Anyone can access a plethora of a computer’s data simply by being connected to the same network. A simple and easy fix is to use a VPN when connected to public Wi-Fi to make the internet connection more secure. When connected to a VPN, a computer’s network connection becomes private through the VPN encrypting and masking the computers IP address, effectively making that computer invisible and untraceable.
2. Maintain Separate Accounts
5. Verify Emails
Everyone in a company or property should have their own individual accounts for whatever systems they may be using. Accounts to systems are often shared by members of a company and this makes it much easier for a breach to occur. All that needs to happen is that one individual loses a paper they wrote the account username and password on and then everyone’s information is at risk. Giving each employee their own password manager account such as LastPass also ensures privacy and a safety net for forgotten passwords. If everyone has individual logins stored in a secure password manager, that allows for multiple points of entry and recovery should a breach occur.
Obviously, most know that there is not actually a prince in Africa that recently came into a fortune and needs financial help to access it. However, when one gets an email from their boss asking for their cellphone number, is it automatically registered as a scam? No, because people trying to steal information are very clever. In the example above, fortunately one can often look at the email address and see that it is fictious. It never hurts to slow down and make sure an email is legitimate before taking any action that is asked.
3. Secure Your Devices You never know who may be lurking around inside or outside of a building. Therefore, it is important that one always secures their devices, especially when working with confidential information.
6
CRE Insight Journal • Special Issue • 2021
Unfortunately, this is a world where there is always something or someone trying to take advantage of someone else. However, when it comes to cybersecurity, simple education is the best defense and will keep one and their company out of harm’s way. Be sure to read the next piece in the series about common practices that you and your team may already be doing but need to stop right away.
