What is the article about?

The article provides a practical eleven-point cybersecurity checklist organizations should complete before the summer holiday period to reduce risk.

Why does cyber risk increase during vacation periods?

Reduced staffing, limited monitoring, and slower response times make it easier for threat actors to exploit vulnerabilities and unattended security alerts.

Which security measures should be prioritized before summer?

Organizations should focus on MFA, email security, patching, monitoring, access reviews, clear responsibilities, disabling unnecessary access, employee awareness, backup testing, and expert support when needed.

Why is MFA important before the holiday season?

MFA significantly reduces the risk of account compromise, especially for email accounts, cloud services, administrator accounts, and guest users.

How can organizations improve visibility into identities and access?

By reviewing active users, MFA status, administrative privileges, guest accounts, and unused licenses, ideally through a centralized real-time dashboard.

What is the main message of the article?

Vacation periods increase cyber risk, but practical and proactive security measures can help organizations maintain secure operations and reduce exposure throughout the summer.

11 security measures your business should have in place before the holidays

The summer holidays are approaching, and while many employees pack their bags and log off, this is exactly the period threat actors exploit. Reduced staffing and less monitoring make many organizations more vulnerable during the summer weeks. Attackers know that alerts go unnoticed for longer, and that the person who usually makes the decisions may be at the cabin.

In recent years, attacks have also become easier to launch and harder to detect. AI-generated phishing messages are nearly flawless, and attacks against identities and logins remain the most common way in. The most important measures remain simple, and there is still time to put them in place.

Here is Sicra's checklist of 11 effective measures you can complete before the holidays.

1. Enable and double-check MFA

Multi-factor authentication (MFA) is still the most effective protection against account takeovers. Make sure it is enabled for all users, especially for email, cloud services and administrative accounts.
You should know that MFA is enabled. In practice, individual accounts often fall outside the policy, and guest users in particular lack MFA without anyone noticing. Sicra offers a system that reads your Entra ID directly and shows who lacks MFA, including guest users, so you can close the gaps before the holidays instead of discovering them afterwards. More on this under point 5.

Tip: Test MFA on both mobile and web before you log off for the summer. Also consider phishing-resistant MFA (such as passkeys or FIDO2 keys) for your most critical accounts, since traditional one-time codes can be intercepted in increasingly sophisticated phishing attacks.

2. Protect your email system against phishing and fraud

Most serious attacks start with an email. What if you could reduce the number of attacks that reach the inbox at all? Sicra can remove phishing and spoofing messages before they reach your employees, in just 15 minutes.
Try our email protection free this summer and experience how we can protect your business effectively and immediately.

3. Update your systems

Install the necessary security patches on servers, systems and machines before the holidays. This applies in particular to:

Operating systems
VPN, network and firewall solutions
Externally accessible services

Prioritize known vulnerabilities that are already being actively exploited, these are the ones attackers look for first.

4. Ensure monitoring and response

If you have a SOC service, such as Arctic Wolf MDR, make sure the contact information is up to date and that someone is responsible for following up on alerts throughout the holidays. If not, consider temporary monitoring during the summer weeks. An alert left unhandled for three weeks is, in practice, no monitoring at all.

5. Review access, and get an overview of your identities

The summer is a good opportunity to clean up who actually has access to what. Many organizations have poorer control here than they think. Do a quick access review and ask the questions:

Are there users who have left but still have active accounts and access?
Have temps and summer staff been given more access than they need?
Are there accounts without MFA, or admin rights no one has an overview of anymore?
Are there old guest and supplier accounts that should have been deactivated?

The challenge is that this overview is often spread across several systems, and assembling it manually takes time few have right before the holidays. That is why Sicra offers a system that reads your Entra ID and gathers everything in a real-time dashboard: who has and lacks MFA, who has which access, and who has actually left but is still listed. Setup takes around an hour, and we then go through the results together with you.

The dashboard provides a strong security overview and shows what you can save on unused Microsoft licenses and other licenses you pay for without using. You can try it free for a week to see how good your control actually is before you log off for the summer. Get in touch if you would like this overview in place.

6. Clarify responsibilities during the holidays

Who takes the first call if something happens? Make a simple plan that describes:

Who is available and when
Which suppliers can be contacted
How a security incident should be handled

Make sure the plan is stored in a place that is easily accessible to multiple people, so it can be found again even when key personnel are on holiday.

7. Close unnecessary access

Limit the attack surface by disabling external access and test environments that are not needed during the summer weeks. Many attacks happen via open ports, forgotten services or temporary setups that were never cleaned up.

8. Prepare your employees

Send out a short summer reminder:

Be extra careful with emails, links and unexpected payment requests
Do not use open networks for work purposes
Be aware that fraud attempts can now look very convincing, even in flawless language
Report unusual activity, it is better to say something once too often

9. Check your backup, and test it

Do you have a backup? Good. Have you tested that it can actually be restored? Do it now. A backup you have never tried to recover data from is an assumption and involves a certain level of uncertainty. Also make sure at least one copy is protected against being changed or deleted, so it holds up against ransomware.

10. Ask for assistance

Whether you need a CISO-for-hire, help with security strategy, a technical review or support before or after the holidays, Sicra is ready to assist. We offer rapid security assessments, advice and practical help to get the most important measures in place.

11. Secure your OT environment before the holidays

If you have production, automation or industrial control systems, this applies to you. Many organizations have connected IT and OT, but production-related systems are often less monitored and more difficult to secure. During the holiday period, the risk increases because fewer people are keeping watch, and the consequences can be directly operational as well as involve data loss.

Get an overview of OT devices and remote access, especially supplier access. Secure all external access with MFA and limit it to what is necessary. Be aware that classic VPN solutions place the user on the network and can allow lateral movement if abused. A brokered solution (broker or ZTNA) grants access only to the specific resource and prevents this.

Get an overview of whether segmentation is actually in place, and ensure monitoring of OT traffic as well. If you do not have control over your OT risk today, a quick review before the holidays is one of the most effective measures you can take.

In summary

Holiday time brings increased risk. With a few simple measures, you can set the stage for a safe and relaxing summer, both for your employees and for your IT systems.