Think of the impact that IT has on our society, let alone the workplace. There are so many things that we can do because of it and as a tool, things could go totally wrong sometimes. It is very tempting to get the company’s confidential documents and sell them to the competing company, client information could be tampered, and so on. Calum Macleod of Cyber-Ark has shared some tips in order to avoid this in your own company.
- Do not expose your internal network
- Make sure that intermediate storage is secure
- Ensure that Data at Rest is protected
- Protection from data deletion, data loss
- Protection from data tampering
- Auditing and monitoring
- End-to-End network protection
- Auditing is required to ensure that a detailed history of activities can be reviewed and validated.
- Process Integrity
Think of the system you have in your company. Find out if your data is at the risk of being tampered. Ask yourself, are you auditing and monitoring? Maybe it could just be this one time of lapse wherein you let one person get out of your office with a lot of important documents. Now that is bad. You never know what this person will do with your data. Even if the person will not sell them to the competing company, the mere act of it being with that person. Are your computers safe from tampering or are they quite vulnerable? If they are quite vulnerable, it might be high time for you to change it.
You might end up having a very strict company policy when you find out that your company documents (among others) are at risk. You would want to keep your reputation when it comes to dealing with your clients. Another thing is that you would like to make sure that everything that you have is intact for your own sake (like filing away some papers). Once you have assessed the existing company policies, you could probably take a break and have a cup of coffee to help you relax a bit.