Protecting Your Data

Leila Sharma

“Data Protection is the Force Behind Our Right to Privacy”
-Varonis

During Week 3 of CSAM, the emphasis is on your awareness and use of security tools and best practices. In the spirit of our week 3 focus, we offer the following recommendations to secure both you and NYU and #KeepNYUCyberSecure

  • Anti-malware software – use anti-malware software to protect the data you access from known security threats.
  • Updates & patching – perform updates as they become available. Updates address security vulnerabilities that may be active exploits.  
  • Strong passwords – Passwords for each of your accounts should be different and hard to guess. Length = strength (14+ characters), or use passphrases which are unique to your life, and consider the use of password manager, to manage all of your long/strong passwords. Don’t share or reuse passwords. 
  • Outsmart social engineers by understanding how they’re trying to trick you. 
  • MFA (multi-factor authentication) – use MFA on all available accounts to protect your login with a second layer of authentication.
  • VPN (virtual private network) – use VPN to protect your internet traffic via an encrypted tunnel, so it cannot be intercepted by others.
  • WiFi – use secure password protected WiFi, and use VPN with WiFi.
  • Encryption – use encryption to protect data where it resides (such as on smartphones and flash drives). 
  • Data classification and system criticality – understand how NYU data and systems you work with should be classified. *Remember, data classified as High Risk data must never be stored on mobile devices. 
  • File storage and sharing guidelines – be familiar with the NYU approved file storage systems, and the data type(s) they can store and transmit. 
  • Secure data handling – properly dispose of (shred) or securely store sensitive information, and make sure to lock your screen when you step away. 
  • System backups – backup your device/systems regularly and be sure to maintain an offline backup. 
  • Lost/stolen NYU owned devices  – all lost and stolen NYU owned devices must be reported to Campus Safety

Do you need a place to start?

KnowBe4 states that if the following 4 things were done successfully by everyone throughout the computer age, 99% of attacks could have been avoided. 

  • Avoid social engineering attempts                                                                          Image of a woman with an expression of astonishment or surprise
  • Perform timely updates of software on all devices
  • Use long/strong unique passwords or passphrases on each of your accounts
  • Use of MFA on all available accounts

  

Thank you for your continued partnership in keeping NYU cyber secure!