Posts Tagged ‘data security’

Newer Entries »

Why Good Times and Bad Call for Better Data Security

Monday, September 27th, 2010

Aside from the routine internal and external threats to your company’s sensitive data, economic factors can have an impact. When economic conditions are tough, as they are now, higher pressure and leaner teams can lead to frustration, and occasionally, employees may turn to theft or malice. Meanwhile, a strong economy can cause team members to look for greener pastures, and they may take proprietary information with them, which effectively puts you in competition with your own innovative practices and products. So, there’s always a reason to amp up your data security measures.

Essentially, there is no best time for complacency. Your data is always at risk, and you need to take strong measures to protect it.

The risks to your data during precarious economic conditions aren’t surprising. Employee dissatisfaction with increasing workloads, layoffs and the general tension that accompanies a recession or other market slowdown can lead to malicious access, use and manipulation of sensitive data. Recently terminated employees may have a desire for retribution and see the theft or tainting of company systems as an easy way to get it. Policies can only help so much, as they provide for post-event consequences, making them little more than a deterrent.

(more…)

Posted in Endpoint Security & Management | No Comments »

Tags: , , , ,

A Single View of Security Events

Wednesday, September 15th, 2010

A disparate security infrastructure can cause some events to fall through the cracks. When this happens, you run the risk that a breach can turn into real damage, and you lose the opportunity to fix the problem. An integrated, single view of your security environment makes event monitoring more effective, and gives you the tools you need to keep sensitive data where it belongs – inside your company’s walls.

Segmented security solutions can be highly effective … in the areas that they cover. The only problem with targeted security event management solutions is that they can leave some areas of your infrastructure exposed, and these cracks in your data security infrastructure can be exploited to steal your data, damage your customers and ruin your brand. There is no substitute for a comprehensive security event management solution that gives you a total view of the activity in your enterprise.

(more…)

Posted in Endpoint Security & Management | No Comments »

Tags: , , ,

Heightened Awareness of DLP

Thursday, July 29th, 2010

Guest post by Brad Pierce, Senior Engineer
bpierce [at] structured.com

In the wake of the 90,000+ classified diplomatic cables being made public on Wikileaks this past weekend , I’m thinking Data Loss Prevention (DLP) has moved up a few notches of priority on the CIO wish list. What’s most disconcerting is that this was not done by an elite team of malicious hackers, but by a disaffected insider with access. Pfc. Bradley E. Manning, an Army intelligence analyst, exploited a loophole in the Defense Department security posture by burning files to CDs.

This high profile case illustrates the need to know where your sensitive information is and how it is being used.

DLP is mandated by a number of regulations including HIPAA/HITECH, GLBA and PCI DSS. Depending on the regulation or industry a company operates within this can cover a wide spectrum as there are many definitions to what DLP entails and what must be secured.

The basics of data loss prevention center on protecting data in three basic states:

(more…)

Posted in Endpoint Security & Management | 3 Comments »

Tags: , , , , , , , , , , , , , , , ,

Five Reasons to Lock Down Your Endpoints

Thursday, July 8th, 2010

Do we really need to discuss the need for endpoint security? Of course not … at this point in the IT industry’s maturity, the need to protect your infrastructure is incredibly clear. With a threat environment that changes continually, though, it’s worth revisiting, from time to time, why you need endpoint security. After all, changes in the nature of the risk have a direct effect on how you protect your company.

Here are five reasons to take another look at why you need to lock down your endpoints:

(more…)

Posted in Endpoint Security & Management | No Comments »

Tags: , , , , , , ,

Trust Nobody: Protect Your Network Endpoints

Monday, June 28th, 2010

Ask most IT professionals to explain their greatest data security fears, and you’ll probably hear a lot about outside threats. The greater concern, though, is inside your company. Employee theft or misuse of data can lead to severe consequences – at least as grave as those from an outsider’s malice – and it could take your company years to recover. Yet, security inside the business tends not to receive the attention that it deserves. Your data, your clients and your company’s viability are at risk: it’s time to take action.

The inside threat is the most significant you’ll face. “Employee compliance with corporate data security policies is on the wane,” according to the Ponemon Institute, a threat potentially more serious than that of malicious outsiders. But, all eyes are pointed outward, either because employees are believed to be trustworthy (which may be true the vast majority of the time) or because external attacks are the events that seem to snare headlines and capture the imagination.

(more…)

Posted in Endpoint Security & Management | No Comments »

Tags: , , , , ,

Newer Entries »