Pub. 14 2019-2020 Issue 5

NEBRASKA BANKERS ASSOCIATION 19 Enter the Password Manager, which is a rare win-win-win in terms of security. When deployed correctly and securely, users can 1) utilize lengthy passwords (20+ characters), 2) without having to remember any of those passwords (except the mas- ter password), and 3) the organization can increase password security by a large margin. Before deploying a passwordmanager, however, it is strongly recommended that you do your research into the security features and reviews around the vendor and use (cloud-based versus locally installed) for the application. Some top-rated and secure password manag- ers include: • LastPass • Dashlane • KeePass • Keeper • 1Password 3. Backup Your Stuff There’s no good excuse for not having top-notch backups of your critical business data today. Memory has never been cheaper; backups have never been easier and more convenient, and there have never been more options to perform off-site backups. The 3-2-1 Backup Rule is highly recommended for any organization looking to back up their data: • Always have three copies of your data – 1 production copy and two backup copies • Utilize two different types of media when performing backups (cloud, disk, tape, etc.) • Always keep one copy of your data off-site (and ensure that off-site backup is air-gapped) 4. Turn on Multi-Factor Authentication One of the best controls to implement for both businesses and individu- als is to turn on Multi-Factor Authentication (MFA – sometimes referred to as Two-Factor Authentication or 2FA) wherever possible. Most online applications today, especially those that are widely adopted, offer MFA as a standard, additional layer of security to protect your data. Most MFA offerings utilize the following types of additional authentication: • SMS-based authentication (a code sent to your phone via text) • Email-based authentication (a code emailed to you) • “Soft-token” authentication (a code or push-notification appears via a smartphone app, like Microsoft Authenticator or PingID) • “Hard-token” authentication (a physical device that either displays a code or can be inserted into a device) While MFA will not and cannot guarantee absolute security, Microsoft recently published a report via its Security blog stating that “MFA can block over 99.9% of account compromise attacks.” 5. Monitor Your Accounts and Credit As we continue to trend toward digital-everything, especially our bank accounts, payment options and purchases, it’s important to pay close atten- tion to your online accounts and credit scores. The great news when it comes Tech Talk — continued on page 20