It?s important to keep communication open between you and the head of your IT department, but it can be difficult to know where to start the conversation. Use these ten questions, each covering a different facet of IT security, to initiate your IT security assessment. Remember, it?s best to keep a no-blame security environment; these questions aren?t meant to catch your IT off-guard. The questions should provoke a constructive and, ultimately, reassuring conversation and highlight any areas for improvement.
1.Have you tested our backup?
2.See this computer (point to one at random), how do I know it is virus-free, up-to-date, backed up?
3.What happens when someone leaves the company?
4.What information could someone get if they stole my laptop?
5.How will our website respond to a distributed denial of service attack?
6.Have we tested our firewalls and our encryption to make sure they will withstand attack?
7.Who has access to passwords for critical business functions?
8.How do we ensure that employees use strong passwords?
9.How do we manage employee permissions and restricted access?
10.How do you know our servers are safe from theft and from accidental damage?