What are the basic security controls to have in place to keep you secure and insured?
There are five basic security controls that you should certainly have in place that will help you get cyber insurance. The first is MFA (Multi Factor Authentication), where you not only key in your password when you access your system as an example, but also are required to key in a code from your cell phone or some other authentication device.
The second control you are going to want to have in place is EDR (Endpoint Detection and Response). EDR identifies threats as soon as they come into your network, from a laptop or from your cell phone as an example, and deals with those threats right away.
Another crucial control is automatic patching. In other words, as soon as there is an update to your operating system, your computer or network automatically updates the system, so you don’t have to worry about it. The next component is email filtering, which should be included as part of your email solution. Email filtering identifies and prevents phish from coming into your email.
Lastly, you are going to want to have your firewall properly configured and have logs that are being generated from that firewall. The firewall is the gatekeeper to your network. It helps identify and decide who can come into your network and logs are created so that there is a record of that activity. This means that if you need to go back and find out what exactly happened, you have the logs to help you do so. Those are the five basic controls carriers look at and if you can get those in place, or if you already have those in place, you will be in a much better position to get your cyber insurance either for the first time or at renewal.