Cloud icon

Monthly Top Tips: Information Security Training For Your NFP

As a not-for-profit organisation, it’s your responsibility to protect your staff and clients’ confidential information. With cyber attacks on the rise, taking steps to ensure your information is secure is paramount.

As your dedicated technology partner, CVD has compiled our security top tips from the NSW Government Department of Communities & Justice.

  1. Create and secure your passwords
    • Use 10 characters or more in length with a combination of uppercase and lowercase letters, numbers and special characters
    • Change passwords every 60 days and use different passwords for each of your accounts
    • Utilise two-factor authentication in addition to your passwords for added security
    • Don’t incorporate common words (names, days, etc.) into your passwords
    • Don’t use your work email and password for non-work-related activities
  2. Be prepared for cyber threats by staying informed and up to date
    • Phishing: Includes unsolicited emails, calls or messages that are used to gain access to your personal information and sensitive data. Be aware of unexpected attachments and login credential requests.
    • Malware: A type of software that is designed to damage and disrupt a computer or server, to gain unauthorised access to information. Malware can vary from viruses, trojans, spyware and worms.
  3. Be aware of your situation, stay secure at home, on your way to the office and on the phone
    • Ensure you are connected to a trusted network at home and you protect the confidentiality of the information you are using.
    • Be aware of who may be around you when you are discussing secure information.
    • Physical security breaches, also known as ‘tailgating’, occurs when an unauthorised person seeks to gain access to a restricted area.
  4. Secure your documents and systems appropriately
    Lock your computer and other devices when you’re not using them and store sensitive information in lockable cabinets when not in use.
  5. Regularly review access rights to information
    Ensure only authorised people have the appropriate level of access to information at the right time.
  6. Be prepared for cyber attacks and take protective measures
    Be on alert for potential cyber attacks and risks. Cyber attacks can occur to anyone at any time, so ensure that you take steps to protect and prevent potential attacks. Back up your data, update your devices, networks and software and stay informed of potential threats.
  7. Notify your IT provider immediately of a suspected or actual breach
    It is essential that you notify your IT provider as soon as you learn about or suspect a cyber attack or Cyber risk. Provide them with:
    • A description of the incident and the level of potential consequence
    • Details of lost or compromised data and information
    • The actions you have taken or are planning to manage the lost or compromised information
    • What actions need to be taken to ensure disruption to your services is minimised

As your dedicated technology partner, CVD is committed to ensuring that your workplace is safe and secure against cyber attacks and risks. It is important to notify Cloud Voice & Data immediately of a suspected or actual breach.

Learn more about maintaining your secure information from the NSW Government Department of Communities & Justice below.

Cloud Voice & Data