1. Do your employees use unique, strong passwords (at least 12 characters, mix of letters, numbers, and symbols)?

2. Have you setup Multi-Factor Authentication (e.g., SMS, authenticator app, hardware token) for email, cloud services, and financial accounts?

3. Do you regularly update operating systems, applications, and devices to ensure they are protected against latest threats?

4. Do you back up business data (files, emails, customer records)?

5. Have employees received cyber security awareness training (phishing, scams, safe browsing)?

6. Are all company devices (PCs, laptops, mobiles) protected with antivirus, firewalls, and disk encryption?

7. Do you have a plan for responding to a cyber attack (e.g., ransomware, data breach)?