You’ve already ensured that Multi Factor Authentication is turned on for your Email Account, so don’t forget your Website (along with all other apps that you use for business). Your team does not log into another team member’s email. You have procedures in place for dealing with emails while a team member is away, or after they have left. Understand the key terms you need to know to be more secure with your Email. ASD has a great reference page on this topic. The UK Gov has a good page with examples of phishing emails that may be helpful. Don’t click on links from emails you are not expecting. If you are using Chrome, Google should spot a malicious website, but it’s the seemingly legit websites that can be tricky. Use some https://tddprojects.atlassian.net/wiki/pages/createpage.action?spaceKey=CYZ&title=URL%20Tips%20and%20Tricks&linkCreation=true&fromPageId=3011117160 to check the URL if it is something you are not quite sure about but really want to open.
| I have an email scanning tool linked to my main email account. I use Guardz, which is great, but there are other similar toolsand cost effective. Bleach Cyber is another similar tool. Your email may have some built in settings to help reduce spam that gets to your inbox. Check with your Technical Advisor. Training for your team must include topics on best email practices. At a minimum, the ASD website has some great content. Cyber Wardens is a good program to enrol your team in, and my email scanning tool, Guarz, has cybersecurity awareness training built in. If you want to buy additional email training, there are some great options out there, Huntress, My Business, and Cyber Eclipse but remember, we don’t blame team members who click on links, we educate.
| You will have up to date, or automated patching of your email software. You will have a vulnerability scanner for your email (and other business systems software).
|