By Greg Keller Posted November 15, 2016
G Suite is a core platform for many organizations. In fact, over 5mm businesses are using the platform.
G Suite includes what perhaps is the most critical online account a user has: their email account. With tens of millions of end users hosting their email accounts with G Suite, there is no doubt that a user’s G Suite account is under attack.
This can be disastrous. A compromised G Suite email account is usually the keys to a person’s online kingdom. So, the question becomes, “How can IT admins support G Suite security practices for their end users?”
5 Best Practices for G Suite Security
We’ve narrowed it down to the five most effective initiatives that IT admins should embark on to secure their G Suite environment.
#1 Strong Passwords –
As with any online account, having strong passwords is critical. The most significant factor is length, but IT admins can add complexity, password rotation, and password reuse into their G Suite password approach. This can be managed from our solution called Directory-as-a-Service®.
#2 Multi-Factor Authentication –
Enabling 2-step verification on all G Suite accounts should be a mandatory step for IT admins. But, adding this security feature to the application shouldn’t be your only step. Add multi-factor authentication to your systems that access G Suite.
Why? Most users leave their systems on and connected to G Suite. If that system is compromised, 2-step at the entry point of G Suite doesn’t help – the user is already in. Thus, a multi-factor authentication requirement for the machine itself is critical. Again, a cloud hosted directory service can provide system level MFA.
#3 User Management –
Controlling user access to G Suite is an important step in security. Users that have departed or those that need modified privileges need to be constantly reviewed. Unfortunately, G Suite’s user management system is weak and doesn’t serve as a central directory service for an organization. With an IDaaS platform connected to G Suite, those user’s passwords can also be used to access systems, applications, and networks. IT admins get the benefit of central account control across G Suite, the user’s device, cloud servers at AWS, on-prem and cloud applications, WiFi networks, and more.
#4 Backup –
Many IT admins assume that Google backs everything up. They do, but once your user’s delete something, then it is gone forever. A smart third-party backup application added to G Suite can help address any issues with lost data or inadvertent mistakes.
#5 Training –
As with any other effort to lock down security, training is critical. IT admins should set aside time on a regular basis to train their employees. Many of these items can be common sense, but many are not. Users can be easily taught to protect themselves and the organizations through training. A key part of any training should include the why behind the policies and approach.
Secure & Powerful G Suite Identities
G Suite is absolutely one of the most critical infrastructure components in any organization. IT admins are working hard to keep it secure, and there are a few additional steps and tools that can support that effort.
We can’t let you go without putting a good word in for our own solution: a unified cloud directory that is designed from the ground up to improve security and to integrate with G Suite.
Directory-as-a-Service has become a key companion solution to G Suite to ensure user access is tightly managed and controlled.
If you would like to learn more about G Suite security practices, drop us a note. We’d be happy to walk you through different approaches to the problem of protecting G Suite identities and data. And, sign-up for a free Directory-as-a-Service account and connect it to your G Suite account. You’ll instantly step-up your security.