Newsletters Welcome, Guest Log In | Register
Home:

Interviews

< Previous | Next >

Subscribe

Sign up now and get the best business technology insights direct to your inbox.

  • Daily Edge
  • CTO Edge Update
  • Business Tools & Templates
  • Aligning IT & Business Goals
  • Maximizing IT Investments

0

Users Cutting Corners, Not Crooks, Are Main Inside Threat

by Carl Weinschenk, IT Business Edge
Feb 1, 2008 12:00:00 AM

 

Carl Weinschenk spoke with Matt Flynn, strategist, NetVision.

 

Weinschenk: Your take is that malicious threats may get the headlines, but that dangers from non-malicious sources are greater.
Flynn: I think the other type of threats, the non-malicious threats, are extremely prevalent. Those things are not reported because they are not identified as attacks. I did about eight years of consulting. I was amazed. I could walk into any company and plug in my laptop and not be asked who I was. That to me is a bigger threat than malicious attacks.

 

Weinschenk: What's going on?
Flynn: I think it is not adequately managed. I think people realize it's going on but are not doing anything about it. One of the surveys I read, from RSA in November, reported that about 35 percent of respondents said they need to work around security policies to get their job done. They decide to go around policies because that’s what they need to do.

 

Weinschenk: It seems like it is part of the overall change in how companies do — or should — think about security.
Flynn: We are moving away from a perimeter-centric view of security to an information-centric point of view. In other words, it is not just about a firewall and protecting the perimeter. You need good security controls and monitoring inside the firewalls. One example is that it is not a good idea to just set a policy and say certain people do not have access. You should also watch the daily activity. I think it's an ongoing process, to look constantly at policies and your risk posture and see if the right controls are in place or not.

 

Weinschenk: Are policies and people's willingness to follow them more important than the technology itself?
Flynn: Behavior is more important than the controls that are in place. One example is that every company have super-user administrators with access to everything, but security policies state they should not have access to some data on the network. I don’t want them to access, for instance, HR files that describe other employees' salaries. The organization has to give him rights because he grants and denies rights [to others]. He has to have technical power to access those files, so it's up to him to decide whether he breaks those policies or not.


Previous Page Next Page

Related Content

Add a comment Leave a comment on this blog post.

There are no comments on this post

Related Content

Browse

Topic: Internal Threat

The internal threat echoes Walt Kelly's Pogo: 'We have met the enemy, and he is us'

Blog: Closing the Security Gap

Article: The Expanding Footprint of the Privileged Identity Management Challenge

White Paper: Stopping Insider Attacks: How Organizations Can Protect Their Sensitive Information

Related Topics

Business Culture, External and Internal Audits, Identity Management, Usage Management and Monitoring

Featured White Papers

Browse

Software Forum: Information On Demand Virtual Experience

This interactive virtual forum presents leading IT experts providing the insights you need to turn your information into a strategic driver for innovation, business optimization and competitive differentiation.

Performance Under Pressure: The State of Enterprise Web Application Quality and Availability

This research study finds that Web application issues are an all-too-common problem and examines these Web-based enterprise application issues from two perspectives: that of an online customer and that of a site manager.

Resource Centers

Browse

Security Information and Event Management

Best practices, strategies and technologies to help you use security information and event log management efficiently and effectively in order to get business value in terms of increased security, reduced risk, regulatory compliance and increased business agility.

Featured Whitepapers

The Top Ten Insider Threats and How to Prevent Them

Premium Tools

Browse

The IT Service Catalog Management Toolkit

Bridge the it-business gap once and for all! A well documented IT services catalog is the conduit for IT services to the rest of the company.

Learn more >

The Complete IT Policy Kit

Download a comprehensive bundle containing over 40 IT policy templates. Each can be modified to align with your specific business requirements. Complete instructions are included.

Learn more >