BG Beter Geregeld ICT

#security

38 artikelen met dit onderwerp

Security zonder IT-afdeling

MFA for every SaaS tool, not just M365: catching up the stragglers

M365 and Google make MFA easy. So do Dropbox, Slack, GitHub, and Trello. But those other SaaS tools? MFA is often missing. Here's how to close the gap.

2 min · 20 Dec 2025
AVG & privacy

Logging IP addresses under GDPR: pseudonymous, personal data, and what's allowed?

An IP address is personal data under GDPR. Security logs often need to retain them for weeks or months. How do you reconcile that with data minimisation principles?

2 min · 20 Dec 2025
Security zonder IT-afdeling

Security awareness training: what works and what's a waste of time

An annual 60-minute security video is a waste of time. Quarterly 10-minute targeted sessions actually work. Here's the programme that gets results.

2 min · 12 Dec 2025
Security zonder IT-afdeling

Vendor risk management for SMBs: a practical framework

Every SaaS subscription is a slice of risk you're outsourcing. How do you decide which of your 30 vendors actually deserve closer attention?

2 min · 04 Dec 2025
Security zonder IT-afdeling

Guest network at the office: how to separate guests from your business network?

Visitors on your WiFi is perfectly normal. Them sitting on the same network broadcast as your NAS is not. Basic segmentation takes just 10 minutes to set up.

2 min · 26 Nov 2025
Security zonder IT-afdeling

Travelling safely with a company laptop: the travel checklist

Heading to an EU destination or further afield? Some countries have strict rules around encryption and device scanning. Here's what to watch out for.

2 min · 18 Nov 2025
Security zonder IT-afdeling

Social engineering: how to recognise CEO fraud and vishing?

Not every attack arrives via email. Phone, SMS, LinkedIn message — modern social engineering uses every channel. Three patterns and how to counter them.

2 min · 10 Nov 2025
Security zonder IT-afdeling

Laptop stolen: the first 30 minutes

Someone calls: laptop stolen from the car. The clock is ticking. Here are the 10 steps you MUST take in the first 30 minutes, in order.

2 min · 02 Nov 2025
Security zonder IT-afdeling

Incident response plan for SMBs on 2 pages

An incident response plan doesn't have to be a 50-page document. Two pages covering who does what and when is enough — as long as everyone knows it.

2 min · 25 Oct 2025
Toegangsbeheer

The least-privilege principle explained for business owners

Grant as little access as possible, for as short a time as possible. That might sound like a productivity hit — in practice, it saves you from a data breach that takes months to explain away.

2 min · 19 Oct 2025
Security zonder IT-afdeling

A Backup Strategy for SMBs That You Actually Test

A backup you've never tested isn't really a backup. The 3-2-1 principle, regular restore tests, and knowing which data matters most — the recipe for a plan that actually works.

2 min · 17 Oct 2025
Toegangsbeheer

Privileged access management for SMBs

Global Admin, AWS root, Salesforce system admin — these are the accounts that cause the most damage when compromised. Here's what you can do without buying an expensive PAM tool.

2 min · 13 Oct 2025
Security zonder IT-afdeling

Choosing a password manager for SMBs: 1Password, Bitwarden, or something else?

No security strategy works without a password manager. Here's a practical comparison of the three options most relevant to SMBs, with clear trade-offs to help you decide.

2 min · 09 Oct 2025
PDF redactie

Why black bars in PDFs don't work (with example)

Two seconds of copy-paste makes the "redacted" text readable again. Here's the technical explanation with a concrete example — and what to do instead.

2 min · 04 Oct 2025
Microsoft 365 & Entra ID

Conditional Access for SMBs: what, when, how?

Conditional Access is the "if this, then that" of M365 security. Sounds complex — in practice it's 5 policies that cover 80% of your risks. Here's the minimum set.

2 min · 04 Oct 2025
Security zonder IT-afdeling

Recognising phishing: what can you teach your team in 20 minutes?

Phishing is no longer a badly-spelled Nigerian prince. Modern phishing is personalised, tailored, and designed to look like it came from inside your own organisation. Here's what everyone needs to know.

2 min · 01 Oct 2025
Microsoft 365 & Entra ID

Rolling out MFA in M365: from 50% to 100% in two weeks

MFA is the cheapest security upgrade you can make — and the most underestimated. Here's the rollout plan that minimises resistance and maximises completion.

2 min · 26 Sep 2025
Security zonder IT-afdeling

Security for SMBs without an IT department: what should you do this quarter?

No IT team, but still accountable. This pillar gives you a priority stack: do this first, then that, then the less urgent stuff. Each item links to a deeper guide.

2 min · 23 Sep 2025