Do not put passwords on Post-it Notes near your computer. If you must use them, keep them far away from the computer and locked away, if possible.
Do not share your passwords with anyone.
Add numbers and symbols. Passphrases (the first letter of each word in a favorite saying or lyric) are harder to crack, but easier to remember than random letters and numbers.
Change passwords 3 to 4 times per year.
Attachments
Do not open any attachments unless they are from a known and reputable party.
Be wary of an attachment from a known person if it serves no business purpose. It is possible the virus has copied your email address book.
Use https email encryption for all sensitive communication.
Cookies
Beware of cookies and the possibility of security breaches.
Check out browser alerts requesting plug-in installation.
Do not install any software without the consent of the boss.
Telecommuting
Avoid unsecure Wi-Fi connections for sensitive information in coffee shops, airports or hotels.
Turn off file and printer sharing when using public Wi-Fi hot spots.
Keep track of all devices. It only takes a few minutes of physical access to gain permanent access to your system. Mind where you leave portable units unlocked or readily available.
Encrypt all information and data transmitted or stored on laptops, mobile devices, USB drives and SIM cards.
Desk
Log off and lock your computers when stepping away, even for a few minutes.
Power off or disconnect your computer from the internet when finished for the day.
Keep confidential information off your desk and in a secure place.
Social Media
Never post confidential information on social media.
Don’t criticize the organization or its officers or employees in a post.
Visit only company approved social networking sites at approved times.
General
Download software updates as soon as they become available.
Beware of social engineering attacks using coercion or persuasion to gain access.
Store data only on company servers and approved cloud storage provider accounts.
