Wednesday, 02 July 2008

You have firewalls and anti-malware system, video surveillance and monitoring systems for network traffic to and from the Internet. But look at eWeek's semi-smart list of the top ten infosec risks workers pose to your business today, and you may need to rethink your plans.

I call this a "semi-smart" list because it's practical and real-world, and doesn't assume the "standards" out there cover all the bases. But, at the same time it doesn't offer much in the way of solutions, which always frustrates me (and it misses some key points, especially related to intentional worker behavior, as opposed to neglect, and how it can substantially enhance the potential associated with these risks).

Point is, each of the items pointed out is very much worth considering and reviewing in your business security program. Just don't forget to look at them in the big-picture perspective of the business.

And now for the list:

  • USB Flash Drives
  • Laptops
  • P2P
  • Web Mail
  • Wi-Fi
  • Smart Phones
  • Collaboration Tools
  • Social Networks
  • Unauthorized Software Updates
  • Virtual Worlds

Pretty much every modern technical productivity enhancer. Before anyone starts screaming the alarmist song, think about not only how these things can be used for good, but also about how they could be used to to Very Bad Things.

How many of those technologies are specifically and can be proven effectively covered under your infosec policies? How many have you tested in the real world to see what your compliance profile really looks like? Could you meaningfully test for these threats, even if they were on your plan?

You can check out the eWeek article here.



Add/Read: Comments [0]
IT Security | Tech
Wednesday, 02 July 2008 22:09:37 (Pacific Standard Time, UTC-08:00)
#  Trackback

Referred by:
http://search.daum.net/ [Referral]
http://album.nosql.ru/forum/memberlist.php?mode=viewprofile&... [Referral]
http://www.gpclpublishing.org/forum/profile.php?id=12565 [Referral]
http://lovedoodlejump.ru/user/coolpainter/ [Referral]
http://www.pulsefmonline.com/w-forum/profile.php?mode=viewpr... [Referral]
http://dailymixx.com/forum/memberlist.php?mode=viewprofile&u... [Referral]
http://garno.ru/user/imagecdxp/ [Referral]
http://www.asylumnation.com/asylum/_r/showthread/threadid_10... [Referral]
http://unreal-clan.ru/user/thailand/ [Referral]
http://softmanik.ru/user/jesikahmaxim/ [Referral]
http://jorjika869.livejournal.com/ [Referral]
http://linerg36.livejournal.com/ [Referral]
http://rwonce.livejournal.com/ [Referral]
http://panpefas.livejournal.com/ [Referral]
http://www.onlinebizdirectory.com/software/theme_creator_sof... [Referral]
http://www.thearticlelist.com/24334/spruce-up-your-programs-... [Referral]
http://socbo.com/tags/catalog?sort=title_desc [Referral]
http://snaiper.sunline.com.ua/forum/index.php?s=13845523ed8e... [Referral]
http://jobs.wadooa.com/index.php?action=profile;u=58498 [Referral]
http://beratungscenter.org/member.php?action=profile&uid=101... [Referral]
http://sale-agro.ru/user/Antirethattic/ [Referral]

More...
Comments are closed.