Primarily you must hire a technology certified people who must have strong experience on security stiffs. You know that we all learn when the fingers are burn. Then why you let your business suffer with again. I strongly recommend hiring a certified people to keep your business safe and secure for long term. Incase you hire third party services. You must check the people profile and knowledge standards whom you want to be your guards. Most companies commit best services and standard, but you must make sure before you believe their words.
A. Build and Maintain a Secure Network
It is not easy to build a secure network and more tough is maintain the established secure networks, as you know hackers are smarter than you guess. Hackers always used bunch of technologies to hack and crack your business security.
1. Install and maintain a firewall configuration to protect cardholder data
A firewall is a piece of software or hardware that helps screen out hackers, viruses, and worms that try to reach your computer over the Internet. If you are a home user or small-business user, using a firewall is the most effective and important first step you can take to help protect your computer. It is important to turn on your firewall and antivirus software before you connect to the Internet.
Hardware firewall is type of application server box installed with firewall security programs. Firewall server box firewall is a secure and trusted machine that sits between a private network and a public network. The firewall machine is configured with a set of rules that determine which network traffic will be allowed to pass and which will be blocked or refused. In some large organizations, you may even find a firewall located inside their corporate network to segregate sensitive areas of the organization from other employees. Many cases of computer crime occur from within an organization, not just from outside.
Firewalls can be constructed in quite a variety of ways. The most sophisticated arrangement involves a number of separate machines and is known as a perimeter network. Two machines act as “filters” called chokes to allow only certain types of network traffic to pass, and between these chokes reside network servers such as a mail gateway or a World Wide Web proxy server. This configuration can be very safe and easily allows quite a great range of control over who can connect both from the inside to the outside, and from the outside to the inside. This sort of configuration might be used by large organizations.
2. Do not use vendor-supplied defaults for system passwords and other security parameters
You also know the importance of password privacy and what happen if others have your password. Here I light on PC, Server, Routers, Application software password security. Most security hardware and programs are built and supplied with common user name as well password and both are open to public. That’s what vendors warn you changing password on device set up. Use of default credentials is high risk as anyone can easily attack your servers and networks. Always use strong password in combination of upper case, lower case, numbers and sign characters. It is strongly recommended password change on regular time interval.
Soon I ‘ll let you know detailed information about PCI standards. Till then you may directly ask me for server security tips.
Author: Gaurav Maniar – MCITP – Windows Server Specialist
I am Gaurav Maniar. I am working as IT Manager in Tuncer Infotech Pvt. Ltd. I am MCITP on Windows 2008 Enterprise. This is my blog regarding Security Related issue on Internet. I generally read more about many security related issues in day to day life people face around the world. Security is more concern in today’s world. People are facing more and more problem about security, phishing. I started this to share my knowledge about security to everyone. I believe knowledge sharing is good for all. Hacking is more concern and specially for India, where cyber security is not much known to all.