What do we do to prevent attacks from occurring in the first place?
1. Adjusting Windows settings
Default Windows settings we change
- Basic Settings for Windows Security
- Privacy Settings
- DNS settings
- Which ones
- Browser Passwords
4. User training
5. Updates, both Windows and all other programs
Dealing with attacks
If something gets in, what do we do?
- Other mitigations, like startup control
- Backups, images?
If there's time, other important setup tools