By: John Shepler
Network security has become a crucial aspect for any business with an internet connection. Reports of security breaches are alarmingly frequent, and it’s possible that we’re only seeing the surface of the problem. While publicized breaches often involve compromised customer data, including sensitive information like credit card numbers, many businesses choose to remain silent about intrusions that don’t directly impact their customers to avoid negative publicity.
Can Everyone Afford Cyber Security?
This surge in cyberattacks has put IT departments on high alert, forcing them to invest heavily in security measures such as appliances and cloud-based solutions. However, smaller businesses like doctor’s offices or restaurants might struggle to afford these expensive defenses.
Simple and Effective Precautions
Any small business or independent professional can take basic, common-sense precautions to deter casual hackers and snoopers. Most routers come equipped with built-in firewalls and Wi-Fi encryption. Neglecting to change default login credentials and enable the highest level of encryption is simply asking for trouble.
The Vulnerability of Public Access
Despite these measures, concerns about network security often persist, especially when offering public Wi-Fi access. This convenience, while attractive to customers, creates vulnerabilities. While most customers won’t pose a threat, individuals with malicious intent could use the access to target other users or attempt to breach the business’s network, potentially even from outside the premises.
Wired Connections: The Safest Option?
Using only wired connections within the business and completely avoiding Wi-Fi offers the most secure approach but severely limits mobility. A slightly less restrictive option is a locked-down Wi-Fi network exclusively for employees, but this may inconvenience customers who rely on wireless connectivity.
Are Firewalls Enough?
Relying solely on a firewall to separate the business network from a public Wi-Fi hotspot can be a source of anxiety, particularly without a dedicated IT team to monitor activity. This uncertainty often leads businesses to either forgo Wi-Fi altogether or keep their networks locked down.
A Two-Network Approach
A viable solution is to implement two separate networks. The first, a high-performance network, would be used exclusively for internal business operations. This network might not even require internet access, and any wireless access points should be tightly controlled. The second network, intended for customer use, can be a lower-cost option like cable broadband, providing sufficient performance for general internet use.
Why Cable Broadband?
Cable broadband offers an affordable and reliable solution for businesses, with speeds ranging from 10 to 100 Mbps. The added advantage of bundling cable TV service with the broadband connection makes it an even more appealing option, particularly for businesses with waiting areas.
Keeping Networks Separate
Critically, these two networks should never be connected. By using different providers and physically separating the connections, businesses can effectively eliminate the risk of crossover. This isolation ensures that even if someone attempts to access the public network, they won’t be able to reach the business’s internal network.
Securing Primary Internet Access
Organizations that require internet access for daily operations need robust security measures in place. While larger businesses might have in-house expertise to manage their firewalls, smaller and medium-sized companies often find it more cost-effective to outsource this responsibility to managed security providers, particularly those offering 24/7 support.
For Emergencies Only
While tempting, the public network should never be used for business purposes, even during outages or capacity issues with the primary network. In such situations, disconnecting the public Wi-Fi hotspot or restricting access to employees only is a safer approach.
Businesses needing secure network solutions, including point-to-point WAN bandwidth, dedicated internet access, separate customer hotspots, or managed security, should explore the available options tailored to their specific needs.