All organizations are subject to cyber-attacks, but during 2020 and 2021, the construction industry was the no. 1 target.
Not an honor to be proud of, but it goes to show the face paced industry, coupled with an increased amount of remote users, causes a lot of opportunities for hackers.
In addition, subcontractors’ invoices, owners’ payment applications and the day-to-day create magical holes in your system—and all it takes to exploit those vulnerabilities is for one employee to click something.
To protect themselves, contractors must create a culture whereby cybersecurity is taken seriously, and that starts at the top of the organization.
Below are ten steps contractors can take to reduce cyber attacks.
Cybersecurity Best Practices for Contractors
Require multifactor authentication for remote access and cloud services.
Provide regular cybersecurity training and security awareness education
Perform regular vulnerability assessment and penetration testing to identify weaknesses.
Implement real-time detection and response.
Ensure proper vulnerability management.
Test your backup and recovery plans.
Block traffic to and from countries in which you don’t conduct business.
Get appropriate levels of cyber coverage.
Work with your trusted service provider to listen to their recommendations and observations.
Implement strong password policies and requirements
Led by a diverse group of shareholders and managers, Schneider Downs provides strategic and practical solutions for our construction clients in all facets of their business. Our dedicated team of more than 350 professionals have a wide background of tax, accounting, technological and business experience in the region, specifically in Pittsburgh and Columbus.
You’ve heard our thoughts… We’d like to hear yours
The Schneider Downs Our Thoughts On blog exists to create a dialogue on issues that are important to organizations and individuals. While we enjoy sharing our ideas and insights, we’re especially interested in what you may have to say. If you have a question or a comment about this article – or any article from the Our Thoughts On blog – we hope you’ll share it with us. After all, a dialogue is an exchange of ideas, and we’d like to hear from you. Email us at [email protected].
Material discussed is meant for informational purposes only, and it is not to be construed as investment, tax, or legal advice. Please note that individual situations can vary. Therefore, this information should be relied upon when coordinated with individual professional advice.