Given the rising frequency of personal data breaches and cyberattacks, we all must take precautions to safeguard our personal devices and data. Even if businesses frequently adhere to extensive cybersecurity frameworks, regular users can nonetheless gain from using fundamental concepts. The Center for Internet Security (CIS) Benchmarks is one such resource.
Consensus-based cybersecurity best practices for system and device lockdown are provided by the CIS Benchmarks. Although the original focus was on commercial IT configurations, many suggestions on updates, backups, and access controls also apply to individuals and home users. Here are some important examples of how typical people might employ CIS Benchmark ideas at home:
- To reduce vulnerability risk, keep operating systems patched and set up devices to update apps and software automatically or as soon as new versions are released. Updating your software is an easy hardening measure.
- Configure multi-factor authentication wherever it is available, paying particular attention to social media, bank accounts, and email. Whenever feasible, turn on more robust authentication measures, such as using authentication apps, instead of less reliable methods like security questions or SMS texts.
- If allowed, create distinct administrator and regular user accounts on computers and other devices. Avoid using devices while logged in as an Admin, such as to check emails, browse the internet, or perform other online activities.
- Regularly back up your data, if possible, both locally and into a secure cloud storage account. Test your backed-up data to ensure it’s not corrupt and will be usable when needed.
- Enable endpoint defenses such as next-gen antivirus software to detect malware. Understand that no AV or antimalware solution can detect all threats (even though they claim to). It’s recommended to run occasional secondary (ad-hoc) virus scans. You can run these manually (passively) to ensure systems are clean. For example, if you have Bitdefender installed, allow Windows Defender to run occasional scans. Or use a tool like Norton Power Eraser or Malwarebytes occasionally.
- At the very least, use WPA2 (or WPA3) encryption and complicated passphrases for wireless networks. Use firewall rules to restrict access, turn off WPS, and make sure the firmware on routers and access points is current.
- Use a password manager and create distinct long passwords or passphrases for each account to enable strong credentials without worrying about reuse. Turn on two-factor verification within the password manager.
Home users can significantly increase security by using CIS Benchmarks as guidelines or checklists to protect devices, accounts, and data from constant and frequent threats. Cybercrime and cyberattacks are increasing in frequency and evolving in complexity; we can adapt enterprise-level security concepts to home users by regularly using connected technology by following the above steps.
Review the CIS Benchmarks here. You may also find this article on selecting a cybersecurity framework valuable.