- TalkBack 1 of 4:
- Next »
- Thread View
- Flat View
- IP
-
CEO's don't only need to put value on security, they also need to enstill ethics and corporate policies around intellectual properties. You can't just have a bunch of security guys protecting your back end if you haven't legally protected yourselves from your employees and contractors.
Security consultants will tell you, the human factor is the weakest part of a companies security. If you don't educate your employee's on their responsibility to protect the companies data and ask questions of people who request this data, whats from stoping your managers who aren't quite awake because they've got someone asking them first thing in the morning for the companies balance sheet for the upcoming fourth quarter results.
They might not be thinking the who what and wheres? Whats more likely "Who are you? what do you need this for? Who's your manager?" OR "Here you go...oh geeze your cutting in to my coffee break, hey have you had your coffee yet? Lets go!"
Companies like KPMG will tell you to make processes enforce them through corporate policy then make every employee accountable for their actions, after all their jobs depend on it. And with a signature you can make that legally binding.
90% of threats are internal employee's who are curious and looking to make a quick buck.
I can not tell you how many times I've broken through security by flashing a smile and making a good conversation dropping a few indirect pieces of company information. (BTW I'm a security advisor and it's my job to identify security weaknesses). And all it takes is a nice suite, reading a publicly release brocure from the company and a stock quote, few people ever question that you work for the company. And if they do "I'm a contractor, I'm here doing a small project for IT"....people are gullable if you don't skip a beat and act like you own the joint.
Just my two bits. - Posted by: rschror Posted on: 11/05/03 You are currently: a Guest | Members login | Terms of Use
IP
rschror | 11/05/03
|
 
Even employee education sometimes fail.
vdraken | 11/05/03
|
|
I've seen
Arrg | 11/05/03
|
|
Foolish CEOs
michael-t | 11/05/03
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- The True Costs of Virtual Server Solutions VMware In an economic environment that is repeatedly heralding the message "do ... Download Now
- Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
- Open Standards Technologies Provide the Ingredients for Delivering Security Across the Papa Gino's Enterprise Dell Papa Gino's Holdings Corporation founded by the entrepreneur operates one ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
Popular Sanity Saver Videos
