Cyber Security

Make your business a digital fortress

Can you afford to invest in the right cyber security? More to the point: can you afford not to? With the combined remediation costs and PR damage a security breach can generate, IT security is one area where it isn’t just desirable to think proactively. It’s essential. 

The good news is, as a trusted provider of cyber security to Perth and Melbourne businesses, we make navigating the IT security minefield feel like a walk in the park.

Our comprehensive cyber risk solutions include a 360˚ audit of your IT security, a report on your weak spots and implementation of a common-sense plan of action. This will mitigate your IT security risks, so you can carry on doing business safe in the knowledge your data, IP and customers are protected.

Get started with a complementary scan of the Dark Web and we'll be in touch personally to show you if your business emails and passwords have been exposed.

Find out if your data is for sale on the dark web

Office Solutions IT support engineers

Your security. Our priority.

Protect your business

Make sure your valuable data and IP don’t fall into the wrong hands, and safeguard the privacy of your customers.

Avoid costly breaches

Fixing security breaches can be an expensive business. The bad PR and reputational damage can be even more costly.

Minimise your investment

Don’t pay for security software you don’t need. Minimise the time and effort involved in staying secure.

Compliance? Check.

Do you know your data and privacy protection obligations? How about the costs for failing to meet them?

Make security second nature

Security training will help ensure everyone within your business maintains IT security best practice, day in, day out.

Focus on the important stuff

When your IT setup is secure, you’re free to focus on looking after your customers and building your business.

Our Cyber Security Services:

Managed Security Basics

Protecting your business just got easier

Minimise the time and effort involved in staying secure with our Managed Security Basics bundle.

This includes installation, configuration and ongoing support of best-in-class protective technologies. This service increases protection against the most commonly occurring cyber-attacks and threats.

The features of this service are:
 
  • Office 365 Two Factor Authentication, requiring an additional user authorisation step when signing onto a secured service for the first time and every 30 days thereafter. This prevents hackers impersonating the user by guessing or knowing a user’s password. This is the most common external attack by hackers, so adding Two Factor Authentication makes a huge improvement to Cyber Security.
  • Anti-Virus, an active scanner on every computer and server. Continuously monitors for viruses and stops them if found. An essential component of any Cyber Security defence.
  • Anti-Spam, which reduces both nuisance mail reaching your users, but also reduces email attacks, that fool users into entering their passwords or opening malware and other types of threats. The majority of threats originate from email making an Anti-Spam solution a basic building block of any Cyber Security defence.
  • Full disk encryption of your devices which stops data loss in the case of theft or loss of the device. This removes the risk of needing to report a data breach if a device is lost or stolen, as attackers cannot retrieve any information from the device.
  • Cyber-Security Training, a training session designed to keep your users up to date with security trends, threats, and the latest tips to stay safe. Run by Office Solutions IT monthly in a webinar format. 



If you have Microsoft 365 Business Premium license (or above), we can leverage that to provide additional protection:

  • Email Sandboxing, that automatically checks email attachments and links by opening them in a secure environment. Helps prevent unknown viruses and threats by seeing what they do before allowing the user to open them. Significantly reduces your risk from threats that are not yet known to anti-virus companies.
  • Office 365 Geo-location blocking, this will stop sign-ins to Office 365 services from other countries and will be configured based on your requirements.
  • Basic Data Alerting, that detects when confidential information is sent or shared outside the business and provides an alert to the user. Includes Teams, emails, OneDrive, and SharePoint. Detects and notifys on sending Driver’s License, Passport Number, SWIFT Codes, Credit Cards, Tax File Numbers and Medical Records.

 

Why you might want this:

Managed anti-virus

Managed anti-spam

Advanced Threat Protection

2 Factor Authentication

PC disk encryption

Data Usage Alerting

Office 365 Hardening

Webinar Cyber-Security Training

 



 
 

Managed Security Proactive

Keep on top of your business's security needs

Provides a high level of proactive protection designed to prevent attacks before they occur. This is done through ongoing user education, monitoring of threats both internal and external, and preventing users from doing the wrong thing.

 

The features of Managed Security Proactive are:

  • Prevents users from opening malicious websites both in and out of the office. Malicious websites can include website with viruses, or fake websites that attempt to trick users into entering their credentials.
  • Breach detection software that checks computers for signs of intrusion and detects if malicious changes have been made. This goes significantly beyond antivirus solutions, by looking at how the system and applications are configured. For example, an email forwarding rule that forwards all emails to an external email address will be picked up by this breach detection software but not by antivirus software – as in this case there is no virus. It looks for the tell-tale signs and tools that attackers use.
  • Regular fake phishing emails sent to your users. These are used to identify and train your users to identify phishing threats. A full report is sent to you including which emails fooled which users.
  • Dark Web Monitoring of user credentials. Any users’ passwords that are for sale on the dark web will be immediately reported on so that remedial action can be taken. This service includes 1 monitored domain. Additional domains can be purchased with Managed Dark Web Monitoring service.
  • Continual monitoring of services that are exposed to the public internet to determine if it should be publicly facing.
  • An annual password audit, where the passwords for all users are brute-forced and vulnerable passwords are revealed. This is reported on to you along with suggested remedial actions.
  • Protection on how passwords and credentials are managed in memory and forcing code signing to stop the possibility of credential theft from PC’s.
  • Customised Cyber Security Awareness Training. An annual training session designed to keep your users up to date with security trends, threats, and the latest tips to stay safe. Can be customised and run at a location of your choosing, with only your users invited to attend.

 

If you have Microsoft 365 Business Premium license (or above), we can leverage that to provide additional protection:

  • Lock down computers to harden them against a potential breach, such as stopping macros from running in office apps.
  • Add password protection to Windows that compares new passwords against a global banned list to stop users from using known bad or easily guessed passwords.

 

Why you might want this:

Regular Password Auditing

Stop the creation of bad passwords

Attack Surface Reduction (Requires Intune)

Monitor for bata breaches on the dark web

Detect malware running in your environment

Monitor your publicly facing services

Test your employee's with email campaigns

Keep alert with Cyber Security Awareness Training

 
 

Managed Data Security

Better manage and protect your critical data

 

Safeguard your data against threats, both inside and outside your business. Features that prevent users and attackers from copying data outside of your organisation combined with features that automatically encrypt your documents grant complete peace of mind when it comes to protecting your intellectual property.

 

For example, a user that copies data to a USB drive or Dropbox is still able to see and use that data. However, unbeknownst to them that data is encrypted. If the user leaves your organization or attempts to share that data with a 3rd party, it will not be decrypted and is unable to be accessed.

 

Due to the requirements of this service, a Microsoft 365 Business Premium license is required.

 

The features of this service are:

  • Manage how users access company data from Mobile Devices. Encrypt company data on mobile devices and require users to use a PIN or Fingerprint to access company data. Allows for company data to be remotely wiped from devices at any time.
  • Customised data alerts and automatic blocks when confidential information is attempted to be shared or sent outside the business. We sit down with you to customise a policy specific to your business. This can include Emails, OneDrive, SharePoint, and Teams.
  • Email encryption protects emails from prying eyes, ensures only the recipient can read the sent email and/or attachment and is unable to forward it. Using this function, you can also recall emails by revoking access to sent messages stopping the recipient from being able to open or view the message.

 

If you have Microsoft 365 E3/E5 license or Microsoft EMS E3/E5, we can leverage those to provide additional protection:

  • Create a custom security portal that provides insigh into user activity in SharePoint, cloud apps, office apps and Azure. Customise alerts and review if users and downloading large numbers for SharePoint documents, using suspicious cloud applications, or signing in from odd locations.
  • Use sensitivity labels to manage document permissions including to set watermarks, headers and footers and encrypt documents when saved from inside your existing office apps. Auto-labelling allows documents to be managed by what they contain, automatically encrypting documents and automatically applying permissions.
  • Protect your information by encrypting your data the moment it leaves SharePoint or OneDrive allowing only your users to access that data. If a user leaves the business, they will be locked out access to that data by removing, there ability to decrypt it. You can also manage if certain items can have text copied from them, able to be printed, and much more.
Why you might want this:

Classify and dictate how your users interact with your data

Encrypt documents taken outside the business

Alert on external user logins from odd times and locations

Manage and Encrypt data at rest on mobiles

Automatically determine and restrict access to sensitive data

 
 

The Essential Eight

The Australian Government recommends these Essential Eight mitigation strategies

While no single mitigation strategy is guaranteed to prevent security incidents, the Australian Government recommends organisations to implement eight essential mitigation strategies as a baseline.
 
This baseline, known as the Essential Eight, makes it much harder for adversaries to compromise systems. Furthermore, implementing the Essential Eight proactively can be more cost-effective in terms of time, money and effort than having to respond to a large-scale cyber security incident.
 
Implementing these will help to prevent malware delivery and execution.
Why you might want this:

Application control

Patch applications

User application hardening

Configure Microsoft Office macro settings

Restrict administrative privileges

Patch operating systems

Multi-factor authentication

Daily backups

 
 

Managed Application Whitelisting

The Gold Standard in Protection from malware, viruses, and ransomware

Unlike antivirus, Application Whitelisting manages what software, scripts, executables, and libraries can run on your systems. This "default deny" approach stops malicious software before it even gets a chance to execute.
 
Application Whitelisting provides protection against ransomware, viruses, and other software-based threats.
 
This solutions allows users to request access to new applications before they are run.
It works on a cloud based platform sending  email reports(optional) and provides us with additonal application insight to better protect your business.
Why you might want this:

Block applications from accessing data

Block applications from accessing system resources

Stop untrusted software from running on your systems

 
 

Customised Cyber Security Seminar

IT security isn't just desirable. It's essential.

Much like our Cyber Security Seminar (above), but instead of a general discussion, our security experts will custom design and present an onsite Cyber Security Seminar at your office to keep your team up to date with the latest cyber security trends - and best practice techniques - so they can protect your business, identify malicious threats and manage security risks.
Why you might want this:

Tailored cyber security awareness training

Reduce business risk

Stay on top of your security game

 
 

Managed Password Manager

Auto-pilot for all your passwords

There’s a reason cyber security specialists like us, harp on about updating your credentials. With passwords causing over 80% of security breaches, password management is one area where it isn’t just desirable to be one-step-ahead. It’s essential.

But we know using a unique and complex password for every single online account is easier said than done. Which is why our Managed Password Manager remembers all your passwords across all your devices, so you don’t have to. It will even generates secure passwords for you automatically whenever you sign up for something new.

Why you might want this:

Fast access to unique and complex passwords for every account

Share passwords securely and effortlessly

Protection from easy to hack passwords

 
 

Managed Secure DNS

Protection on any device - anywhere & anytime

User error is a primary cause of business security breaches. So, protecting your business in the cloud, across the web, in social media applications and mobile networks isn’t just important. It’s essential in protecting your business from heavy remediation costs and PR damage.

Allow us to show you what a secure internet environment looks like with a secure gateway that sits between your team members and their interactions with the web. From preventing sensitive data sharing and social media use, to identifying data-stealing malware, your team will be blocked from visiting any suspicious websitesso you can relax knowing we’ll safeguard the privacy of your business data and your customers.

Why you might want this:

Protection from users visiting malicious websites

Protection from cloned websites designed to steal data

Safeguard your business data

 
 

Managed Anti-Spam

Risk-free reading

Make no mistake: your business security will be tested, and if you spend 10 minutes of your day sifting through the spam in your inbox, it already is. Your security is our priority, but even our complex business security systems can be compromised if the wrong email is opened.

Millions of spam emails are distributed world-wide every single day. Sadly, all it takes is one to cause serious damage to your business. The good news is, we’ll filter your incoming email through our intelligent Anti-Spam filters to strip out the malicious content so you’re free to focus on looking after your customers and building your business.

No risk. No spam. Just a tidy inbox of risk-free reading.

Why you might want this:

Stops spam cluttering up inbox and slowing down productivity

Protection from users interacting with malicious emails

Reduce the risk of spreading infected emails throughout your organisation

 
 

Managed Anti-Virus

Power of Protection

In your digital life, you rely on your IT systems every day - when your surfing, socializing, banking, doing business. That’s why our managed cloud anti-virus solution helps you protect what matters most... Your privacy, finances, and your business – before it’s too late.

We’ll look after the live anti-virus scanning, notifications and automatic removal of malware, so you’re free to focus on looking after your customers and building your business.

Why you might want this:

Peace of mind protection from known trojans, spyware and malware

Protect your team from phishing attacks and data theft

Intrusion protection from hackers

 
 

Managed Vulnerability Monitoring

Find the security holes in your Infrastructure

We offer a network-based scanner that provides insight into network and system vulnerabilities across a wide variety of devices and services. A report is generated monthly that can be used to lower the risk profile of the business. This is often used to satisfy auditing and compliance requirements.

 

Includes labour to deploy and manage the scanner, as well as to discuss the report and potential solutions. The scan and report can be run as frequently as monthly. Remediation of discovered vulnerabilities is not included in this Managed Service.

Why you might want this:

Find and detect security holes

Identify key ways tighten network security

Prevent/mitigate against attacks

 
 

Managed Dark Web Monitoring

Is your information for sale on the Dark Web?

 

Dark Web Monitoring of user credentials. Any users’ passwords that are for sale on the dark web will be immediately reported on so that remedial action can be taken.

 

Our staff recive a report when a breach occurs and alerts you to the impacted account and credentials. If the item is of concern they will work with you through a process to best remidiate the breach.

Remediation of issues is not included in this Managed Service.

Why you might want this:

Identify breached accounts

Identify your exposure

Leverage our alerts and process

 
 

Managed Simulated Attacks

Avoid the cost of downtime

Survivng in today’s complex marketplace isn’t just about a healthy bottom line and an up to date anti-virus.

It’s also about your readiness for the inevitable. With thousands of phishing attacks happening every day, the focus is no longer on prevention - we can’t stop the emails - but we can help you prepare for them.

Our simulated phishing-attacks will put your business – and your team - to the test to show you how your business would perform against a real-world phishing-attack.

We’ll randomly deploy a simulated phishing-attack on your business 4 times a year, so you can discover your security weaknesses before the attackers do. We’ll even provide you with a detailed report highlighting your performance – and access to an online catalogue of resources - so your team can learn how to better protect your most critical assets every day.

Why you might want this:

Identify security weaknesses before cyber attackers do

Know what areas of your business need investment and what you can safely ignore for now.

Get clear on the current status of your business security

 
 

Managed 2 Factor Authentication Advanced

Need even more peace of mind security?
Piece of cake.

Unlike our Standard Two Factor Authentication service (above), our advanced version means you can enforce tighter security measures for all of your online accounts, so you can relax knowing your data - and your business - are protected, even if your password is compromised.
Why you might want this:

Protection of your Office 365 accounts from brute force password guessing algorithms

Secure your Office 365 Outlook and OneDrive data even if your password is compromised

Protect your team and business from identity theft

 
 

Security Policy Creation

Everything you need to know to stay safe - in plain English

From email standards and handling sensitive data, to social media access and how to respond to cyber incidents – we’ll provide you with a custom plain-English security policy, so your team knows what business assets you need to protect, the threats to those assets, and the best practice methods to protect them.

In other words, we’ll document everything you need to know to stay on top of your security game and you won’t require an IT degree to read it.

Why you might want this:

Identify cyber threats to critical business assets

Best practice cyber security measures

Easy to understand plain English security policy

 
 

“I can’t fault OSIT’s rapid-response IT support. If I report an issue, they’re there straight away, finding a way to get me back online. It’s so reassuring, and definitely one less thing to worry about.”

DEBBIE WHITING - UTOPIA FINANCIAL SERVICES

“We’re definitely getting a bigger bang for our IT buck with OSIT. They’ve found cost savings in a host of areas, and their prompt IT support services mean we’re able to focus on business, rather than worrying about IT issues.”

TARNIA HOPPER - ELITE FOODS

Turn that IT frown upside down

IT isn’t supposed to distract you from the important stuff. It’s supposed to enable you to do more of it, more efficiently. And that’s our sole purpose at Office Solutions IT – delivering IT support services that take care of the complex business of managing IT, so you can focus on your business. Get in touch and find out more.


Call us on
1300 349 195

Email us


connect@osit.com

Schedule a call
Select a time that suits
Compromised-Accounts-Dark-Web-Scan

Is your data exposed on the dark web? Find out today

90% of small and mid-sized organisations have some combination of emails and passwords for sale on the Dark Web.

Get a complementary Dark Web Analysis for your organisation, so you can find out if your organisation is exposed and reduce the risk of a security breach.

Recent Blog Posts

Site Map
©2021 Office Solutions IT. All Rights Reserved.
Terms & Conditions Privacy Policy