Ten Security Tips For Employees

  1. Be alert | Use common sense and think twice before clicking links, opening attachments, visiting websites or responding to emails or phone calls. Many cyberattacks can be prevented if you take a moment to consider your actions and potential consequences.
  2. Know how to identify phishing attempts | Be wary of emails or calls that require "immediate action" or ask for personal information. Carefully inspect links to make sure they point to a reputable site before clicking and never respond to messages asking for your username and password. Report suspicious emails to abuse@fsu.edu.
  3. Use 2FA | FSU offers 2-factor authentication (2FA) for myFSU HR, employee email and other university applications. Consider adding this same protection to other sites or apps when available, such as your personal email or social media accounts. This extra layer of security requires you to verify your identity twice before accessing your account and can protect you from having your email hijacked or paycheck redirected.
  4. Create strong passwords | Make a lengthy password using a combination of uppercase and lowercase letters, numbers and special characters. Use different passwords for different sites and consider using a password manager, such as LastPass, to store your passwords. Also, never share your password with anyone.
  5. Lock your devices | Never leave your devices unattended. Password protect your phone or tablet and log off or lock your screen every time you step away from your computer.
  6. Keep apps and software up to date | Talk with your IT support staff to make sure your work computer is programmed to automatically install updates. Do the same thing for your home computer and mobile devices, and regularly restart all devices to give them a chance to complete the update process.
  7. Limit activities on public Wi-Fi | On campus, always connect to the FSU Secure network. When traveling, either use your cellular network, Eduroam or a virtual private network (VPN) to get secure internet access. If you must use a public network, make sure it is reputable and refrain from accessing sensitive information, such as online banking.
  8. Back up your computer | Talk with the IT support staff in your unit and make sure there is a plan in place to back up your files and data regularly. Computers can utilize cloud storage or external hard drives to store copies of files. Either way, regular backup will protect you from losing all your work or research in the event of a ransomware attack.
  9. Protect personal information | Do not store personally identifiable information—such as employee Social Security numbers, credit card numbers or student email addresses—on your computer unless it’s in an encrypted file.
  10. Attend training | Take advantage of free cybersecurity training resources. Visit the ITS website to register for security awareness training videos, browse training sites or request an on-site cybersecurity presentation for your team: its.fsu.edu/ispo/training/education
title-inside title-centered
2