Top 10 Cyber Hygiene Checklist for Managers:  Protecting Your Organization in the Evolving Threat Landscape

Top 10 Cyber Hygiene Checklist for Managers: Protecting Your Organization in the Evolving Threat Landscape

By Dr. Ir. Charles Lim, Msc., Bsc., CSAP, Security+, CySA+, CND, CCSE, CTIA, CHFI, EDRP, ECSA, ECSP, ECIH, CEH, CEI

Deputy Head of Master IT Program
Head of Cybersecurity Research Centre of Excellence
Swiss German University

In today’s increasingly complex digital world, managers are on the front lines of cybersecurity. Protecting sensitive information and mitigating sophisticated cyber threats requires a proactive approach and a strong understanding of cyber hygiene best practices. This comprehensive checklist empowers managers to build a robust security posture within their teams and across the organization.

  1. Strong Password and Access Management: The Foundation of Security
    • Enforce Strong, Unique Passwords: Move beyond simple passwords. Mandate complex passwords using a combination of uppercase and lowercase letters, numbers, and symbols. Consider password management tools for employees.
    • Implement Multi-Factor Authentication (MFA): MFA adds a crucial extra layer of security, requiring multiple verification methods (e.g., password, code from a mobile app, biometric scan) for access to critical systems.
    • Regularly Review and Update Access Controls: Conduct periodic audits of user permissions. Ensure employees only have access to the data and systems necessary for their roles. Revoke access promptly when employees leave or change positions.
  1. Phishing and Social Engineering Awareness: Recognizing the Human Factor
    • Conduct Regular, Engaging Training: Don’t just lecture. Implement interactive training programs that educate employees on the latest phishing techniques, including spear phishing and social engineering tactics.
    • Simulate Phishing Attacks (with Caution): Controlled, ethical phishing simulations can help gauge employee awareness and identify areas for improvement. Ensure these simulations are conducted responsibly and with clear communication to avoid undue stress or confusion.
    • Establish Clear Reporting Channels: Make it easy for employees to report suspicious emails, messages, or activity. Emphasize a “see something, say something” culture.
  1. Device and Endpoint Security: Securing the Front Lines
    • Keep Systems Updated: Patching vulnerabilities is critical. Implement automatic updates for operating systems, applications, and firmware on all devices (laptops, desktops, mobile devices).
    • Deploy Robust Antivirus/Anti-malware Solutions: Utilize reputable and up-to-date antivirus and anti-malware software on all endpoints. Consider endpoint detection and response (EDR) solutions for advanced threat detection.
    • Control External Devices: Restrict or carefully manage the use of USB drives and other external devices, as they can be a vector for malware.
  1. Data Protection and Backup: Ensuring Business Continuity
    • Encrypt Sensitive Data: Encrypt data both in transit (when it’s being transmitted) and at rest (when it’s stored). Use strong encryption algorithms.
    • Implement Regular, Automated Data Backups: Establish a robust backup schedule and ensure backups are stored securely, ideally offsite or in the cloud. Test backups regularly to ensure they can be restored.
    • Consider Data Loss Prevention (DLP) Tools: DLP solutions can help prevent sensitive data from leaving the organization’s control, whether intentionally or accidentally.
  1. Secure Communication and Collaboration Platforms: Protecting Information Flow
    • Use Encrypted Communication Channels: Encourage the use of secure communication platforms with end-to-end encryption for sensitive conversations.
    • Monitor and Secure Collaboration Tools: Review the security settings of platforms like Microsoft Teams, Slack, and others. Control access and permissions to prevent unauthorized access and data leaks.
    • Educate on Secure Sharing Practices: Train employees on how to share information securely, including best practices for file sharing and collaboration.
  1. Vendor and Third-Party Risk Management: Extending Your Security Perimeter
    • Assess Vendor Security Posture: Before partnering with any third-party vendor, evaluate their cybersecurity practices and security controls.
    • Establish Clear Security Agreements: Include cybersecurity requirements and responsibilities in contracts with vendors.
    • Monitor Third-Party Access: Regularly review and manage the access rights granted to third-party vendors.
  1. Incident Response and Reporting: Preparing for the Inevitable
    • Develop a Comprehensive Incident Response Plan: A well-defined incident response plan is essential for handling security incidents effectively. The plan should outline procedures for detection, containment, eradication, recovery, and post-incident analysis.
    • Conduct Regular Incident Response Drills: Simulate cyberattacks to test the incident response plan and identify areas for improvement.
    • Foster a Culture of Reporting: Encourage employees to report any suspicious activity or security concerns immediately, without fear of reprisal.
  1. Compliance and Policy Enforcement: Adhering to Standards
    • Stay Informed on Relevant Regulations: Keep up-to-date with industry-specific cybersecurity regulations (e.g., GDPR, HIPAA, PCI DSS) and ensure compliance.
    • Regularly Review and Update Security Policies: Security policies should be reviewed and updated regularly to address emerging threats and changes in the regulatory landscape.
    • Enforce Security Policies Consistently: Ensure that security policies are enforced consistently across all departments and levels of the organization.
  1. Remote and Hybrid Work Security: Securing the Distributed Workforce
    • Secure Remote Connections: Require the use of Virtual Private Networks (VPNs) for all remote access to the organization’s network.
    • Implement Robust Endpoint Security for Remote Devices: Ensure that remote devices meet the same security standards as on-site devices.
    • Define Clear Remote Work Security Policies: Establish clear guidelines for remote and hybrid work, including acceptable use policies, data protection requirements, and security protocols.
  1. Leadership and Security Culture: Setting the Tone from the Top
    • Lead by Example: Managers must demonstrate a strong commitment to cybersecurity best practices.
    • Communicate the Importance of Security: Regularly communicate the importance of cybersecurity to employees and reinforce security awareness.
    • Encourage Continuous Learning: Support ongoing cybersecurity training and education for all employees.

Staying Ahead of Emerging Threats:

The cybersecurity landscape is constantly evolving. Recent incidents, such as hackers impersonating IT staff on platforms like Microsoft Teams to deploy ransomware [1] and the use of AI by malicious actors to enhance cyberattacks [2], highlight the need for vigilance. Managers must stay informed about emerging threats and adapt their security strategies accordingly. Proactive cybersecurity measures, combined with a strong security culture, are essential for protecting organizational assets in today’s dynamic threat environment.

References:

[1] “Russian hackers pose as remote IT staff on Microsoft Teams,” The Times, Jan. 2025. [Online]. Available: https://www.thetimes.co.uk/article/russian-hackers-pose-as-remote-it-staff-on-microsoft-teams-vhpx6ww7m

[2] “Chinese and Iranian Hackers Are Using U.S. AI Products to Bolster Cyberattacks,” The Wall Street Journal, Jan. 2025. [Online]. Available: https://www.wsj.com/tech/ai/chinese-and-iranian-hackers-are-using-u-s-ai-products-to-bolster-cyberattacks-ff3c5884

SGU Cybersecurity Research Centre of Excellence

The Swiss German University (SGU) Cybersecurity Research Centre of Excellence is dedicated to advancing cutting-edge cybersecurity research, developing innovative security solutions, and fostering industry collaboration. Our centre provides expertise in cyber threat intelligence, risk management, and secure system development, equipping businesses and organizations with the tools to combat emerging cyber threats. We offer customized cybersecurity training, consulting services, and applied research projects, ensuring that our partners stay ahead of evolving digital risks. By working with SGU, you gain access to top-tier cybersecurity experts, state-of-the-art research, and real-world security solutions tailored to your organization’s needs. Let’s collaborate to strengthen your cybersecurity posture and drive innovation in digital security.

About SGU

SWISS GERMAN UNIVERSITY (SGU) is an international university in Indonesia, was established in 2000 as a joint effort between Indonesia, Germany, Switzerland, and Austria. We are the pioneer in offering international curricula in Indonesia. Qualified students can graduate with a Double Degree from Indonesia and Germany, which SGU provides in cooperation with partner universities; surely a valuable tool for your future careers. Ever since its establishment, SGU has been dedicated to delivering quality education in line with international standards and aims to develop skilled professionals who meet the demands of the industry. In order to achieve its objectives, SGU offers quality-oriented learning through 17 Bachelor’s Degree Programs and 6 Master’s Degree Programs ranging from Engineering, Information Technology, and Business to Life Sciences and Social Sciences. Furthermore, with small class sizes, and with English as the medium of instruction, you can look forward to pursuing your tertiary education and degree with full confidence.