Joe's Security

Info presented at "Joe's Security" is focused at everyday, "average Joe," home and family computer owners.

But... The more computers you connect to the Internet, and/or the greater the value of the information on those computers, the more you have to “up” your security game. Simply put, the greater the value of the stuff, the bigger the lock needed!

With that in mind, a little "entry level" computer security perspective for small businesses just might help a few busy small business owners keep bad guys out of their computers and important data, too.

So, for a SOHO (small office, home office) situation, a bigger investment in your separate, physical firewall - for quality, reliability and features - can be money well spent. In other words, the firewall you put in place should be selected for its solid reputation as a security device, not just how well it allows multiple computers to share an Internet connection. The better this device protects and the less its downtime, the more money you'll save in the long run.

Once a business' size exceeds more than a few computers, you’ll need a seriously REAL firewall, preferably one with some packet inspection and other security capabilities. Now days there are lower end products that even perform anti-virus, web-filtering and can accomodate a DMZ for public servers, too. But expect to spend $800 to $2,500, and committing to annual licensing and maintenance costs, for these slices of perimeter-security heaven.

At the point a business wants to start hosting its own Internet-facing web or email servers, or allowing inbound VPN access - if you've avoided it so far - it’s definitely time for professional help. Locking down traffic types, access, firewall rules and hardening Internet exposed systems and applications isn’t a task for amateurs or techie "I think I can's."

There are proven methods for architecting these things, that will make it very hard for bad guys to crack. Pro's have been applying and improving on these methods for years, and if you’ve read this far, then it’s likely you don't fully understand all the complexities of securely setting these things up.

As a business grows even more, then we tend to add system monitoring and reporting, intrusion detection/prevention, enterprise anti-virus and patching solutions, email security technologies, strong web filtering, etc. etc.

The classic mistake of many businesses is to underestimate the value of their information systems and data, and to also underestimate the skills of cyber-attackers. This doesn’t mean that adequate cyber-security for businesses requires a massive budget, but it does require a budget. And even top security technologies can implemented improperly or poorly, so if this is where your business is at… get qualified, professional help.

Because your business works too hard for it’s money. Don’t give it away to hackers by being “penny wise, but pound foolish,” when it comes to your computer security architecture.