Top 12 essential cyber security tips

Every employee, at every level, should be empowered to make smarter cybersecurity decisions. These strategies aren’t only for the workplace they can easily be adapted for friends, family, and personal use, creating safer digital habits.

Learn more about our cyber security awareness training. 

Here are some essential tips to strengthen your defences and promote safe habits among friends and family.

1. Recognise cyber security is everyone’s responsibility

• Cyber security isn’t just for the IT department. Everyone from HR to finance can benefit from cyber security awareness training.
• Encourage friends and family to be cautious online, like avoiding unexpected email attachments or links, and remind them that legitimate organisations won’t ask for sensitive info via email.

2. Utilise multi-factor authentication (MFA)

• Using multi-factor authentication (MFA) on business accounts can drastically reduce the chances of unauthorised access. Even if someone guesses or steals their password, they’ll need a second factor (like a text message or an app-generated code) to break in.
• Help friends and family enable MFA on their accounts and devices, ensuring an extra layer of protection even if passwords are compromised.

3. Spot and report phishing attacks

• AI phishing attacks are becoming more sophisticated. Train yourself to spot suspicious emails—check the sender’s email address, hover over links without clicking, and beware of urgency cues (e.g., “Your account will be locked unless you act now”). Always report potential phishing emails to your IT or security team.
• For friends and family, teach them to avoid clicking on links or downloading attachments from unknown senders. A great rule of thumb: when in doubt, verify the message, with the person or company who supposedly sent it via a different channel (like a phone call).

4. Keep personal and work data separate

• Avoid using the same devices for personal and work activities. Mixing personal data (like banking info) with company data on the same device could make both vulnerable if there’s a breach.
• For friends and family, encourage them to separate personal and financial activities on different devices if possible. For example, they could reserve a tablet for online shopping and banking, and use their personal computer for entertainment, minimising risk.

5. Practice safe browsing habits

• Only visit trusted websites (look for “https”) and avoid downloading software from dubious sources.
• For friends and family, show them how to identify secure websites and the dangers of downloading files from untrusted sources. Emphasise safe browsing when using shared devices at home or public Wi-Fi in places like cafes, and the benefits of using a VPN.

6. Practice safe social media use

• Be cautious about oversharing on social media. Even seemingly harmless details about your workday or job role can be pieced together by attackers for phishing or social engineering.
• Avoid interacting with unfamiliar contacts or responding to suspicious messages on social platforms.

7. Regularly update software and devices

• One of the easiest ways to stay protected is to keep software, apps, and operating systems up to date.
• For friends and family, remind them that those annoying “update available” pop-ups are critical to keeping devices secure. Help them turn on automatic updates for their phones, tablets, and computers so they’re always better protected from the latest threats.

8. Implement backups and recovery plans

• Ensure that you’re regularly backing up your work documents to a secure location, whether that’s a company-approved cloud service or an encrypted external drive. If a cyberattack or ransomware incident occurs, you’ll have a safe copy to recover from.
• For friends and family, teach them to regularly back up their photos, documents, and important files. A simple external hard drive or a reputable cloud service can help them recover their data in case of a virus, ransomware, or accidental deletion.

9. Secure public Wi-Fi with VPNs

• When working remotely or traveling, avoid using public Wi-Fi for accessing sensitive company data unless you’re using a Virtual Private Network (VPN). VPNs encrypt your connection, making it much harder for hackers to intercept your information.
• Encourage friends and family to refrain from logging into sensitive accounts on public networks.

10. Prepare for emerging AI-driven threats

• Be aware that AI is being used not only for defence but also by attackers for more sophisticated scams.
• Train employees on emerging threats that use AI to manipulate communications, from phishing to deepfake scams.
• Build and adopt AI Security and Governance capability and skills at the pace of the risk.

11. Use stronger unique passwords

• Avoid common passwords and make each account password unique, use three random words as best practice. Strong passwords remain one of the simplest ways to boost security.
• Update important passwords, checking compromised lists, and use a password manager to securely store and generate strong passwords.

12. Regularly backup data

• Automate backups using cloud services or external hard drives. Backing up and encrypting data is one of the defences against ransomware and data loss.
• Ensure multiple copies of important data are stored in secure locations.

You don’t have to be a tech expert to contribute to cybersecurity. Whether at work or in your personal life, simple, proactive habits can go a long way in reducing the risk of cyber-attacks. Empowering everyone to play their part creates a stronger, more secure and resilient digital environment for us all.

By following these cyber security tips, you can help create a safer digital environment for yourself and those around you. Remember, cyber security isn’t just a tech issue; it’s a collective responsibility.

Want to learn more? Explore our range of cyber security training and courses, as well as cyber security certifications or complete the form below to get in touch.