INDIANA COMPUTER SECURITY AND COMPUTER THEFT A YEAR ROUND PROBLEM http://www.insideindianabusiness.com/contributors.asp?ID=687

Computer Security is a Year-Round Concern
By: Jack Carr - Chief Operating Officer, IQuest Internet, Inc.

Category: Technology
It's not just a springtime worry. Securing computer data is a must-do, year-round emergency preparedness effort.

While the recent storms in Indianapolis serve as a dramatic reminder to protect computer systems and the data contained therein, a far bigger concern should be protecting your confidential data from a wide range of security issues all year.

Thieves who steal your laptops, hackers who worm their way into your central server, or a host of other "disasters" that unlock your data's confidentiality, are far more likely to compromise the security of your data than a weather-related incident. And for most businesses and organizations today, losing critical operational and customer information can quickly cripple the ability to continue functioning.

There are many ways to enhance your business data security. IQuest Internet, LLC, Indiana's only Internet provider to date to earn Statement on Auditing Standards (SAS) No. 70 - Level 2 certification, suggests the following to ensure computer data is safe in the event of a major emergency:

• First step is admitting your computer data is priceless – knowing that the data stored on your computer system is critical to the continued operation of your company. It must be protected.

• Most companies and organizations are pretty good about backing up their data at least daily, and then removing that backup data to a safe off-site area. This is “Data Security 101.” If you are not doing this, start immediately.

• If the central server system is located in your office, be sure your have adequate protections against environmental challenges (broken water pipes, loss of electricity, loss of cooling capacity for your server equipment room, electrical fires, etc.). UPS (Uninterruptible Power Supply) systems are basic. Some companies have backup generators, automatic fire extinguishing systems and more.

• Make sure your on-site server equipment and other office computers are secure from break-ins. While laptops are a favorite among thieves, larger computers are stolen too. A locked door is a minimum. Keyed entry systems, retina scanners and more are not uncommon today.

• For employees traveling with laptops, have policies and procedures to ensure laptops are password protected. No unauthorized person should be able to access the data on your company's laptops.

• To further guarantee security, you must have policies and procedures (and a way to test the procedures for vulnerabilities) concerning access to your business data. What employees can access data and how deep can they go into records? This is especially important as companies and organizations comply with Sarbanes-Oxley and HIPPA regulations.

• If you have IT staff on site, you'll have to ensure ongoing training, as well as updated security software, to guard against the constant threat of hackers and others who would like nothing more than your customer records and Social Security numbers.

If all of these security measures seem overwhelming and expensive, you are right. Protecting data can be a daunting task. One option being used by more and more companies and organization is to store business data at an off-site data storage facility. With the lowering costs of moving data from one place to another, off-site data storage is fast becoming a cost-effective and better solution to installing your own security systems and measures. If you are interested in off-site data storage, IQuest Internet, LLC, recommends you carefully investigate the ISP and its security systems. Ask if the Internet service provider (ISP) is SAS 70 certified by the American Institute of Certified Public Accountants. It means the ISP has undergone an in-depth audit of control activities to ensure the highest level of data protection. Also ask for references, and call the companies and organizations using that ISP.

Finally, remember that data security is not a storm-season issue. It's a year-round issue.