IT Security: The Essential Eight Framework

Essential Eight Strategy 1: Application Control

Application Control means setting up rules to determine what applications are allowed to run on your systems. This helps protect your network from malware and unauthorised access by stopping untrusted or harmful programs from running.

• To do this, you can use application whitelisting, which means only pre-approved software is allowed to run. It greatly decreases the chances of malicious software infecting your system.
• You should also check your application list regularly. Get rid of the old and unwanted software to secure and make your system work smoothly.

The first line of defence against cyber threats is application control which keeps unauthorised access to your systems. 

Essential Eight Strategy 2: Patch Applications

Keeping your systems secure is an important part of regularly updating your applications. Vulnerabilities can be created in unpatched applications that cybercriminals can exploit.

• To remain on top of this, create a patch management schedule. This makes sure your software is always up to date and on time.
• Update programs you use often, such as browsers and office software, because they are popular targets of hackers.

Updating your applications regularly may seem like a small task, but it’s an important step for malware protection and safeguarding against other cyber threats.

Essential Eight Strategy 3: Configure Microsoft Office Macros

Macros in Microsoft Office are useful for automating tasks but can also be exploited by hackers to carry out attacks. It’s important to configure macro settings to block or limit risky macros in order to protect your systems. 

• For most users it’s a good idea to disable macros, or only allow macros to run if they come from trusted, verified sources. 
• Make sure you regularly review these settings and adjust them as needed to stop unauthorised macros from running.

If you want more tips on how to avoid phishing, check out our phishing protection guide.

Essential Eight Strategy 4: User Application Hardening

User application hardening is about disabling features that can be considered risky in commonly used applications. That’s especially important for programs like web browsers and office software, which are frequently targeted by hackers.

• For example, you can disable features like Java, as attackers often exploit these.
• Assess which features your team actually needs and turn off anything that isn’t essential.

By taking these steps you reduce vulnerabilities, you increase your network security and reduce the number of ways a hacker can try to gain access to your system.

Essential Eight Strategy 5: Restrict Administrative Privileges

Giving too many users unrestricted admin access increases the chance of information security problems. Administrative privileges are restricted to those who need them and reduce risks both inside and outside your organisation.

• A good habit is to regularly check admin privileges and remove access to what you don’t need anymore.
• You should also create clear policies for requesting and granting temporary admin access. It allows you to have a better control over who can do sensitive tasks.

It’s a key step in risk management and to avoid unauthorised changes that could damage your systems or data. 

Essential Eight Strategy 6: Patch Operating Systems

Just like applications, operating systems need regular updates to stay secure. Older systems are often a hacker’s target because of known vulnerabilities.

• The way to avoid this is to make sure you have automatic updates on (if you can) or to set up a schedule to apply patches.
• Updates for systems handling sensitive or critical data should be prioritised, especially, because they are the most obvious targets for attackers. 

Updating your operating system is an important part of protecting your network, maintaining firewall security and stopping new threats from gaining a foothold.

Essential Eight Strategy 7: Multi-Factor Authentication (MFA)

Multi-factor authentication (MFA) is an extra layer of security that requires a user to prove their identity by something other than a password. Usually it is a combination, such as a password and a code sent to their phone. If passwords are stolen, MFA helps keep your accounts secure. 

• Make sure to enable MFA on sensitive systems and accounts, especially for those with admin access. 
• Don’t forget to educate your team on the importance of MFA and to use it for their personal accounts too. 

MFA is a great way to increase your cyber security and protect your data and network from unauthorised access. 

Essential Eight Strategy 8: Regular Backups

Backing up your data regularly is essential for protecting your business and ensuring continuity. If an attack compromises your system, recent backups let you recover quickly and continue operations.

• Make sure to schedule automated backups for all important systems and data.
• Keep backups stored off-site or in the cloud to protect them from on-site threats like hardware failure or physical damage.

Up-to-date backups are one of the best ways to defend against ransomware and other cyber threats. For more advice on dealing with ransomware, see our ransomware protection guide.