Self-Assessment Checklist 1Contact Information2Assessment Questions Name* First Last Company Name* Email* Phone* Do you run internal network assessments quarterly?* Yes No I don't know Are you running annual penetration tests on your firewall and server?* Yes No I don't know Are you requiring your remote employees to use a VPN?* Yes No I don't know Do you require anti-virus software on all servers and workstations?* Yes No I don't know Do you ensure that all anti-virus definitions are up to date?* Yes No I don't know Do you monitor the anti-virus software on servers and workstations?* Yes No I don't know Do you have any Windows 7 workstations?* Yes No I don't know Are the servers and workstations being patched regularly with critical and security updates?* Yes No I don't know Do you regularly (daily) back up critical company data?* Yes No I don't know Do you always change the vendor default passwords on equipment?* Yes No I don't know Are specific personnel available on a 24/7 basis to respond to alerts?* Yes No I don't know Do you have a current network diagram including wireless networks?* Yes No I don't know Are all users assigned a unique username and password?* Yes No I don't know Do you require users to change passwords every 90 days?* Yes No I don't know Do you require a minimum password length of at least 12 characters?* Yes No I don't know Do you require a locked screen saver after 15 minutes?* Yes No I don't know Do you have battery backups (UPS) on all workstations?* Yes No I don't know Are you using two factor authentication (2FA) for systems and email?* Yes No I don't know Do you require your users to get cyber security training?* Yes No I don't know Are you encrypting all email attachments sent to clients?* Yes No I don't know Did you know your copier has a hard drive and needs to be wiped if returned?* Yes No I don't know