Bell Technology Consulting Group

It isn't so much what the system can do; it's what the business does with the system. If you have a small to medium sized business and have a Windows based network system and you want to get the most from it, here are some things to keep in mind.

ANTIVIRUS PROCTECTION

Investment in a major antivirus software package is absolutely mandatory. You must have one and most businesses do. But they often don't have the software properly installed and configured. That can mean the entire world in getting the most from your programs.

Choose from any of the top three packages and you'll have an array of antivirus defense, system utilities and monitoring tools. But, unless they are monitored and diligently administered, most systems can quickly lose their effectiveness. Understanding the program defaults, customizing them, then setting them up correctly is what stands between them doing their best or worst job

The AV software should provide live update features to ensure current system protection at all times. Proper scheduling can minimize the impact of the software on network resources by forcing the program into doing its work at quiet times. Some applications can potentially conflict and corrupt systems if installed on a system that already has another AV client installed. When using multiple programs compatibility is of utmost importance. Whatever applications are used, the software should be maintained monitored and reviewed for updates periodically.

USER SECURITY

The biggest security threat to any system is its own users. Users are the ones who access the systems everyday, all day. They share passwords and security information recklessly. They forget passwords. Users and their day-to-day activities are the most common source of the prolific and annoying viruses, Trojans and other malicious and destructive attacks. Users both have the problems and are the problem.

Careful application of user security standards and policies is critical for effective system security. Establish and monitor user security permissions and file/folder/document access levels carefully. Limit open shared

folders. Establish minimum and maximum network access levels and permissions and stick to them.

Allowing users to install programs on their workstations is another common error in business environments. To avoid potentially serious system modifications by the user it's best to limit users desktop installation administration rights to keep each desktop OS and user profile secure.

Eliminate installation of unauthorized and unlicensed software.

NETWORK ACCESS/SYSTEM SECURITY

Small businesses with limited on site resources, the best system will make use of the default settings, and applications built into Windows Server Systems. The best network environment for any business serious about getting the best protection possible is based on a domain structure. Not using a domain environment is another error many small businesses make. Peer to Peer network groups for small home office are fine, if you're the only one using the PC's. But the best tools and highest level of security for multiple users can only be found using a Domain Server network hierarchy.

The ideal security design will contain global-based security policies that are restrictive enough to be applied to everyone yet flexible enough for easy administrator modification. Specific policies for departments and individual users can be granted by use of local user security policy

The most annoying yet vital aspect of network security is the use of network logons and user passwords. It is also one the most ignored rules of business security in smaller businesses. User names and passwords are a way of life in any serious business network system. They should be strongly encrypted and refreshed often. The best and most simple method of keeping passwords secure calls for frequent changes by the user. Users should be required to change theirs often. The password security level should be the maximum possible.

Despite the contrary opinions of the average business user, browsing the internet should not be an employee right. While important for research and legitimate business activities, unfettered internet access is a danger to network security and a negative impact on user productivity. It also allows for unnecessary and extensive resource consumption. Most users don't need more than an on-site based Intranet office web page for most inter-office connections. Maintaining a tightly controlled and security focused application and monitoring process for the internet environment adds to its effectiveness.

EMAIL

SECURITY

Email is the most prevalent threat as far as corporate IT security is concerned. The constant flow of mail, documents and pictures provides the perfect avenue for unauthorized access. In any business network environment, email demands the most attention and diligence in monitoring what goes in and out of the network. Well planned and aggressive oversight when it comes to policy and practices related to email activity are an absolute necessity.

It is the routine user activity that often does the most damage when it comes to email violations. Most business office mail systems are based on Microsoft Exchange. Exchange is a great email business solution for almost any size business. It's a great tool when properly configured. If not configured and used properly it can almost be too much of a drain on the resources of a small system. If your business ISP provider offers Email services and protection, it is a viable option that small businesses should consider in the overall system design

The time spent to determine the most efficient use of email can insure the minimal drain on network resources and can do a lot for system performance. Careful screening of corporate email traffic, comprehensive virus screening, subject text filtering and malware/spyware software solutions play a big role in protecting your system. They need to be compatible for best performance and success to provide a safe exchange of documents and other files between users.

HARDWARE ENVIRONMENT

For new businesses that are preparing a system network and will be purchasing equipment for installation, the decisions made now can go a long way to getting the most for your dollar when it applies to future growth. For business already in place, when the time comes to replace or upgrade current hardware the same concern applies.

Invest in quality hardware and system devices that will be able to do what is needed to create a secure and effective business system. Your business will need a minimum level of performance and capacity for its current systems requirements.

Try to be consistent when it comes to hardware platforms. Buying systems from a single OEM helps keep hardware and tech specifications standard. Manufacturer based user environments helps keep work at a minimum when it comes to hardware support. Shared components allows for compatibility in the face of repairs and customizing. Keeping current hardware and system components standard and updated along with OS patching will

keep technology flexible.

LAN and WAN devices related to a secure and smooth functioning system such as switches, routers and NIC components are critical when it comes to system security. They are the frontline of defense in external security and protect us from the outside world. Proper design, customization and configuration of the network system are essential to keep the network flowing smoothly and safely.

SYSTEMS DOCUMENTATION

Most businesses, large or small fail to maintain adequate IT documents. They have a habit of depending on the employees administrating their system to know the needs of their business. The fact that the current IT guru has everything needed to manage the system committed to memory won't be much help the day he leaves for another job. Every business should ensure that all policies and practices involved in the administration and function of its network systems are documented and updated.

One of the most effective and valuable tools required at any level in the IT field is accurate information. When a business system is established, the importance of creating clear, accurate documentation describing all network functions is necessary. Simply put, when it comes to understanding how your business system is supposed to work at a time of concern and then dealing with the issue, you will need the owner's manual.

When dealing with system troubleshooting, it helps to have a document that describes every detail related to the problem on the table. Accurate documentation outlines in an official capacity, just how a business is supposed to do whatever it is supposed to be doing, right. It is also how the business knows why something isn't working.

Documents related to every component of the entire business network system are of ultimate importance and essential when it comes to maintaining control, access, stability and protection. Creating detailed, precise, accurate, current and concise asset, user, administration and department documentation shouldn't just be a practice it should be requirement. For a business where the need to consult effectively and provide the best information to off-site support from the OEM or IT consulting groups, clear and detailed documentation can mean the difference between a quick resolution and a drawn out service scenario. Proper documentation can mean everything.

When it comes to getting the kind of security that will protect your business against all threats a business needs to take the issues as seriously as anyone else. Just because you have a small business doesn't mean you shouldn't think like the big guys.