Few IT teams have the necessary talent and budget to meet the increasing threat landscape. The number of bad actors profiting by illicit means continues to grow. And the software and the techniques they use are more sophisticated than ever before.

That’s just for starters. The number of entry points continues to climb exponentially. Physical devices are proliferating, from mobiles to those used for the Internet of Things. What’s more, today’s businesses rely on technology with roots from a variety of sources, such as software coming from third-party SaaS or IaaS providers, from one-off vendor purchases, and from cloud solutions. The attack surface stretches beyond what just a few years ago was unfathomable.

So, what can an IT director do to keep your organization ahead of mounting threats to stay safe and secure? The Center for Internet Security (CIS) recommends starting with basic, often-overlooked precautions when it comes to building a solid security posture.

Use this checklist to develop your cybersecurity strategy, step-by-step!