How to Effectively Address Privacy Concerns

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10
Next How to Effectively Address Privacy Concerns-7 Next

Educating employees

A survey by Enterprise Management Associates found that more than half of all employees lack security training that could help prevent data breaches. Regular employee training is critical to augment security capabilities, said Bermingham. This cannot be a one-time training as turnover and regular reinforcement of employees' responsibilities are important. Helping them to recognize phishing attempts and reinforcing not opening attachments from unknown senders are baseline considerations.

Employees should understand the risks involved in a data breach. That includes understanding penalties and fines to the business and the potential impact on the company's reputation and brand.

Steve Pate, chief architect at HyTrust, added that employees need a rigid set of controls that should be put in place so simple mistakes cannot be made. Also, it is all employees at every level that need to be held responsible for better security. Pate stated:

Auditing of administrator actions often reduces malicious actions or simple mistakes that can be catastrophic for an organization – financially or by reputation. Have a set of processes in place and have those processes adhered to. Have internal and external auditors review the processes for correctness.

Survey after survey shows it: Both consumers and employees question privacy on enterprise networks. For example, TRUSTe, a global data privacy management company, found that consumer trust has hit a three-year low. A GFI Software survey found that employees worry about identity theft within their company.

However, while the concerns themselves aren't new, the survey results are showing a new trend, said Barry Shteiman, director of Security Strategy at Imperva:

This new awareness is because many breaches in the past two years have resulted in the leakage of private information, and for that reason it became top-of-mind. However, this is a problem that has existed since the birth of data systems decades ago. That being said, the concern is real – breaches that risk business and private user information, such as their Social Security numbers, credit card information and other details create the risk of identity theft, and financial loss.

It isn't just breaches that are the problem, Renee Bradshaw, senior solutions manager at NetIQ, added:

With the hyper-focus on the NSA spying scandal, the Target breach, and most recently, the Heartbleed bug, it's no wonder that many Americans are very concerned about data privacy. The prospect of having your most private information bared for all to see, or of having your personal wealth plundered by the "bad guys," has become a real possibility – a part of public consciousness. Understandably, there is fear, and not without merit.

Now that consumers and employees are both growing more vocal about the risks involved, it is time for enterprise to start understanding how data leaks occur and addressing privacy concerns.

 

Related Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

 
More Slideshows

PAM PAM Solutions: Critical to Securing Privileged Access

To protect the company from those insiders who abuse their privileged access and from hackers with stolen credentials, many companies are turning to a privileged access management (PAM) solution. ...  More >>

Fake news How Can We Fix the Fake News Problem?

Is fake news a security issue? Some say yes, as it can be used as a social engineering tool to spread disinformation and conceivably to get unsuspecting users to click on malicious links. ...  More >>

blockchain The World According to Blockchain

Blockchain comes with many costs and is surrounded by confusion. Here, we examine realistic use cases, drawbacks and the potential of blockchain. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.