10 Data Security Enhancements for Your Business -- Security Today

10 Data Security Enhancements for Your Business

Jan 23, 2023

More than three quarters (77 percent) of IT decision makers across the United States and Canada believe their companies are likely to face a data breach within the next three years according to survey results released recently by Adastra, the global Data and Analytics solution provider.

The online survey was conducted by Forum Research between December 2–14, 2022 and consisted of 882 IT professionals throughout the United States (589) and Canada (293).

Survey respondents ranked data security as the biggest game changer in 2023 as companies continue to bolster their cybersecurity preparedness—68 percent of managers surveyed say their companies have a cybersecurity division and a further 18 percent report they are in the process of creating one. Only 6 per cent of respondents reported having no cybersecurity division.

“The increase in data breach incidents across North America is troubling and must be prioritized as employees continue to return in-person to their corporate offices,” said Kuljit Chahal, Practice Lead, Data Security at Adastra North America. “During the pandemic many employees were hired virtually and, in combination with long absences from offices, introductions to and re-familiarization with security protocols will be critical.”

Awareness of data security best practices among employees is essential—according to the 2022 Verizon Data Breach Investigations Report, 82 percent of data breaches are caused by human error and companies of all sizes are at risk.

“In our role as data security experts, we have found that some companies, especially smaller ones, can be lulled into a false sense of security believing that perpetrators will not bother with them—this is absolutely not the case,” said Chahal. “The results of this survey should serve as a reminder that companies of all sizes must invest in data security protection, resources and education, particularly as we return to in-office activities,” he said.

In 2021 alone, Statistics Canada found that 41 percent of data breaches occur in small and medium-sized companies with less than 250 employees and Canadian businesses impacted by cyber breaches spent a collective $600 million to recover. The cost of a breach can be significant and far more than what an audit from a data security firm will cost.

A poll of this size is considered accurate +/- 3.3 percent 19 times out of 20.

10 data security enhancements to consider as your employees return to the office:

1. Insider threats - employee re-education of systems and protocols

The unauthorized disclosure of data isn't always the result of malicious actors. Often, data is accidentally overshared or lost by employees. Keep your employees informed with cyber security education. Employees who go through regular phishing tests may be less likely to engage with malicious actors over email or text messaging.

2. Know your inventory

An inventory of software, hardware and data assets is essential. Having control over the assets with access to your corporate environment starts with an inventory. Inventories can be a part of the overall vulnerability management program to keep all assets up to date, including operating systems and software. Furthermore, a data inventory or catalogue identifies sensitive data, which allows appropriate security controls like encryption, access restrictions and monitoring to be placed on the most important data.

3. Delete redundant data

Reducing your overall data footprint can be an effective way of reducing risk. Data that resides in multiple locations may not have equal protection in each environment. Understanding what data is required and what can be archived helps to keep control over data assets.

4. Early detection systems

Detecting anomalies and suspicious activities can resolve issues before they become a breach. Today's XDR (extended detection and response) and EDR (endpoint detection and response) systems include automated responses to common attacks. For example, suppose an employee downloads a malicious email attachment. In that case, the EDR system can prevent the execution of the malware hidden inside and alert security staff.

These detection systems can be monitored by internal cyber security staff or monitored by third-party security companies who can alert management of incidents as they occur.

5. Data back-ups

Having a robust, immutable data backup plan can help an organization quickly recover from an incident. The frequency of the data backup depends on the risk the organization is willing to take. "Can we afford to lose a week's worth of data or a day's worth of data?"

6. Limiting staff access

Employing the least privilege principle reduces overall risk by only allowing access to data and services required to perform specific duties. Establishing processes for provisioning and de-provisioning user access with approvals, audit trails, reports, and regular attestations can limit what an attacker may be able to access in the event of compromised credentials. It's not uncommon for end users to have unrestricted administrative access to their endpoint laptops. This allows users to install unauthorized software or be more easily targeted for malware attacks.

7. Hire a third-party company to conduct a security audit - know your vulnerabilities

An outside assessment of your organization’s security posture, based on established cyber security frameworks such as NIST or CIS, can provide a clearer picture of strengths and weaknesses and a roadmap to address your greatest vulnerabilities.

8. Establish new passwords with two-factor authentication

Traditionally users are authenticated by one of three ways:

What you know (password)
What you have (card access or one-time passcode)
What you are (biometrics)

Adding a second factor to the ubiquitous password authentication adds another layer of security for access.

9. Update your computer programs with the latest security features

Most data breaches occur because a known vulnerability was exploited. Establishing a vulnerability management program that regularly scans software assets and applies patches is one of the most crucial security activities a company can perform.

10. Physical security

As employees return to the office, there will be employees who are coming back to the office for the first time. Reinforcing clean desk policies and reviewing physical access controls, including access to secure areas, may be required to ensure assets are not stolen or lost.

Work-from-home employees who have company assets should be routinely educated on keeping those assets secure while at home as they would in the office.

Hanwha Vision Holds Pricing Steady Amid Tariff Volatility
06/03/2025
ESX 2025 to Kick Off with Exclusive New Member Meetup
06/02/2025
ASIS International Unveils Program for GSX 2025
05/29/2025
Arrow Security Celebrates Grand Opening of New Boston Office
05/29/2025
Texas Hospital Association Names CENTEGIX an Industry Partner to Advance Healthcare Worker Safety
05/23/2025
Data Privacy is a Competitive Edge Not an Option
05/21/2025
Everon Initiative for Affordable Housing Partnership Strengthens Company Commitment to Community Outreach
05/20/2025
Hanwha Vision Ushers in New Era of VSaaS with OnCloud Direct-to-cloud Video Management System
05/19/2025

Featured

AI Is Now the Leading Cybersecurity Concern for Security, IT Leaders

Arctic Wolf recently published findings from its State of Cybersecurity: 2025 Trends Report, offering insights from a global survey of more than 1,200 senior IT and cybersecurity decision-makers across 15 countries. Conducted by Sapio Research, the report captures the realities, risks, and readiness strategies shaping the modern security landscape. Read Now
- Cybersecurity
Analysis of AI Tools Shows 85 Percent Have Been Breached

AI tools are becoming essential to modern work, but their fast, unmonitored adoption is creating a new kind of security risk. Recent surveys reveal a clear trend – employees are rapidly adopting consumer-facing AI tools without employer approval, IT oversight, or any clear security policies. According to Cybernews Business Digital Index, nearly 90% of analyzed AI tools have been exposed to data breaches, putting businesses at severe risk. Read Now
- Cybersecurity
- Artificial Intelligence
Software Vulnerabilities Surged 61 Percent in 2024, According to New Report

Action1, a provider of autonomous endpoint management (AEM) solutions, today released its 2025 Software Vulnerability Ratings Report, revealing a 61% year-over-year surge in discovered software vulnerabilities and a 96% spike in exploited vulnerabilities throughout 2024, amid an increasingly aggressive threat landscape. Read Now
- Cybersecurity
Motorola Solutions Named Official Safety Technology Supplier of the Ryder Cup through 2027

Motorola Solutions has today been named the Official Safety Technology Supplier of the 2025 and 2027 Ryder Cup, professional golf’s renowned biennial team competition between the United States and Europe. Read Now
- Facility Security
Evolving Cybersecurity Strategies

Organizations are increasingly turning their attention to human-focused security approaches, as two out of three (68%) cybersecurity incidents involve people. Threat actors are shifting from targeting networks and systems to hacking humans via social engineering methods, living off human errors as their most prevalent attack vector. Whether manipulated or not, human cyber behavior is leveraged to gain backdoor access into systems. This mainly results from a lack of employee training and awareness about evolving attack techniques employed by malign actors. Read Now
- Cybersecurity

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

ResponderLink

Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols.
QCS7230 System-on-Chip (SoC)

The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge.
Automatic Systems V07

Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.