Please Enter Your Email to Check Your Email Security

Your name

Company name

Phone

Your Cybersecurity Score

Your overall score

Your score compared to other companies

Your Score

Average Score

Best Score

100

I want to improve my score

Please Enter Your Email to Check Your Email Security

Please answer all the question below to see your CyberSecurity Score

Identity Security Data Security Device Security Network Security Email Security Insider Threat

Do you have MFA (Multi-Factor Authentication) enabled for your employees?

Yes No

If your vendor has a data security breach, do you have the ability to determine if your data is being sold online?

Yes No

How long would it take for you to find out about a hack or security breach?

Immediately Couple of days We would not know

Do you administer active phishing awareness campaigns for users in your network?

Yes No

How do you store or secure information such as usernames and passwords?

Password manager Excel spreadsheet Post-it notes on your desk

Where do your employees work?

Office Home Coffee shop Wherever they can get Internet Access

Do you have Mobile Device Management Policies or Mobile Application Management Policies in place to help protect data on mobile devices?

Yes No

Do you conduct regular (every 2-3 days) data backups?

Yes No

Do you regularly (every 2-3 days) backup your data offsite?

Yes No

Do you have alerting system in place if one of the users in the company gets Ransomware and it starts encrypting files?

Yes No

Do you store backups in encrypted format?

Yes No

Do your company computers allow the use of flash drives or plug-in storage devices to copy or transfer data?

Yes No

Can employees copy company data to their personal accounts? (OneDrive, Google Drive, Dropbox, etc.)

Yes No

Do you have the ability to delete data from an employee’s laptop or mobile device if it is lost or stolen?

Yes No

Do you have ability to block advertisements (Ads) on user devices?

Yes No

Do you regularly update Windows and keep a log of when it was last updated?

Yes No

Do you regularly update your antivirus software and keep a log of when it was last updated?

Yes No

Is your data encrypted on all company devices?

Yes No

Do you use RMM(Remote Monitoring and Management) software to perform security monitoring and management on company computers?

Yes No

What types of devices are used at your company?

Computer Laptop Tablets Smartphones

Do your employees use personally owned devices to conduct company business?

Yes No

Do you have a physical firewall device in your network?

Yes No

Does your firewall have an active threat protection subscription?

Yes No

Do you have the ability to block specific sites or site groups from your employees?

Yes No

Does someone at your company actively monitor or analyze firewall logs for suspicious activity?

Yes No

In the event of an internet outage or network equipment failure, do you have any redundancies to allow users to continue working?

Yes No

Do you have a VPN (Virtual Private Network) for top-level executives to use while they are traveling?

Yes No

Do you have separate Wi-Fi networks for guests and company employees?

Yes No

Who is your company’s email provider?

Microsoft Godaddy Bluehost Gmail

Does your company utilize software to block phishing links, dangerous email attachments, and filter spam messages?

Yes No

Do you have DKIM (Domain Keys Identified Mail) and SPF (Sender Policy Framework) records in place to prevent spoofing?

Yes No

Do you have Conditional Access Policies enabled?

Yes No

Do your employees share sensitive data such as credit card numbers, social security numbers, bank account details, or medical information over email?

Yes No

Do your employees have the ability to send encrypted emails?

Yes No

Do your employees have the ability to forward emails from their work email account to their personal email account?

Yes No

Do your employees take annual cybersecurity awareness training?

Yes No

Do you run test phishing campaigns to identify which employees need additional training?

Yes No

If you share data with a vendor, do you have the ability to revoke data access when you are no longer working with that vendor?

Yes No

Do your employees have the ability to install software without admin approval?

Yes No

5 ). Do your employees have access to all company data or just the data that pertains to their role? (Example: Does the shipping department have access to financial data, etc.?)

Data access pertaining to their role No data access restrictions for employees.

Do your employees know where to report suspicious activity that they notice on their computers?

Yes No

When an employee leaves the company, do you have the ability to remove or turn off his/her access to company data and systems?

Yes No

Disclaimer

Always consult an expert.

Cybersecurity can be complex depending on your company’s specific digital communication needs and industry. This checklist is composed of general questions related to measures an organization should have in place to ensure minimum standard security best practices, and does not qualify as legal advice, provide a certificate, measure of reliance or approval in manner. Successfully passing this assessment does not guarantee that you or your organization are 100% secure. You should always consult a cybersecurity expert such as Third Coast IT to make sure you have the correct measures in place. Contact us at 414-622-1000 or info@thirdcoastit.com.