Five Steps to Preventing Insider Data Breaches - Slide 2

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7
Next Five Steps to Preventing Insider Data Breaches-2 Next

Build security directly into the business process, independent of the existing network infrastructure, by establishing a safe harbor or vault for highly sensitive data (such as administrator account passwords, HR files, or intellectual property). This will protect the data from the security threats of hackers and the accidental misuse by employees.

A digital vault is set up as a dedicated, hardened server that provides a single data access channel with only one way in and one way out. It is protected with multiple layers of integrated security including a firewall, VPN, authentication, access control, and full encryption. By separating the server interfaces from the storage engine, many of the security risks associated with widespread connectivity are removed.

Mismanagement of processes involving privileged access, privileged data, or privileged users poses serious risks to organizations. Such mismanagement is also increasing enterprises’ vulnerability to internal threats that can be caused by simple human error or malicious deeds.

According to a Computing Technology Industry Association (CompTIA) survey, while most respondents still consider viruses and malware the top security threat, more than half (53 percent) attributed their data breaches to human error, presenting another dimension to the rising concern about insider threats.  It should serve as a wake-up call to many organizations that inadvertent or malicious insider activity can create a security risk.

To significantly cut the risk of these insider breaches, enterprises must have appropriate systems and processes in place to avoid or reduce human errors caused by inadvertent data leakage, sharing of passwords, and other seemingly harmless actions.

Adam Bosnian, vice president of products and strategy at Cyber-Ark Software, offers the following best practices for organizations serious about preventing internal breaches, be they accidental or malicious, of any processes that involve privileged access, privileged data or privileged users.

More Slideshows:

14 Tips for a Successful IT Infrastructure Library (ITIL) Implementation Overcome resistance to the structure imposed by ITIL implementation.

Eight Steps to Organizational Effectiveness Discover what being an effective organization really means and how you go about creating one.

Smart Grid: A Closer Look at Potential and Obstacles Review key components of the smart grid and the obstacles facing this massive undertaking.


Related Topics : Application Security, IT Process Management, Six Sigma

More Slideshows

DynCloudInternetVisibility0x 8 Reasons the Enterprise Needs More Visibility into the Cloud

IT executives need the right tools to monitor and control their cloud infrastructure to maximize the positive impacts and mitigate security threats. ...  More >>

Analytics21-190x128 5 Ways to Avoid Becoming 'Digital Prey'

Future IT leaders will need to seek technologies that eliminate silos in order to deliver the right information to the right person within the right application environment at the right time. ...  More >>

NETSCOUTShadowIT0x 6 Tips for Combating Shadow IT Once and for All

To mitigate the risks of shadow IT, organizations must demonstrate the necessary agility and high quality of complex service assurance that users are looking for. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.