Password Management Multi-Factor Authentication
Be sure employees are using strong passwords. Educate them on what classifies as a strong password and best practices surrounding password security.
Establish multi-factor authentication throughout the organization to safeguard data. This protects access to data and systems by requiring two or more identity verification factors to log in – typically something you know and something you have.
Email Security with Anti-Phishing Defenses
Multiple layers of email defenses can minimize attacks.
Strong Verification Controls
Some email security tools already have anti-phishing measures built in. Email authentication protocols, such as( Sender Policy Framework( SPF), DomainKeys Identified Mail( DKIM) and Domain-based Message Authentication Reporting and Conformance( DMARC)) can be used to block spoofed emails.
Protocols for wire transfers, vendor account changes or any request to move funds— phone verification via known numbers, dual approval, etc.— can significantly decrease these attacks.
Here to Help
Regular, Realistic Phishing Simulations
Recent research shows many traditional antiphishing training programs have limited effectiveness in reducing click rates under more difficult or deceptive lures. According to IBM, approximately 16 % of breaches involved attackers using artificial intelligence, especially for crafting phishing or impersonation content. Deepfake voice / video scams and imitators are rapidly growing as well. Combining sophisticated tests with threat awareness training can increase effectiveness.
Cybersecurity can be intimidating and daunting to tackle alone. Partnering with credentialed, experienced advisors can help relieve the burden and provide insight into the strength of protection of your company’ s data. Doeren Mayhew’ s cybersecurity pros stand ready to help. Rely on us to take a deep dive into your current security position and provide a strong action plan to combat current and future threats
About the Author
BRAD ATKIN, CPA, CITP, CISA, SOC
PRINCIPAL, DOEREN MAYHEW ASSURANCE
PRINCIPAL, DOEREN MAYHEW ADVISORS, LLC atkin @ doeren. com
As the practice leader for the firm’ s Cybersecurity and IT Advisory Group, Brad provides solutions that enhance clients’ technology systems, while adhering to strict compliance, thus bolstering the security of organizational data assets.
VIEWPOINTS: ISSUE 2 2025 | 13