Lack of Identity Data Security Practices
If you and/or your tools (i.e. laptop, usb, network share, backup tapes, paper reports, etc) are a conduit for identity data, understand that there is no excuse for allowing this data to be exposed, accidentally or otherwise.
- Take a strategic, layered approach to data security, rather than focusing solely on one or two exposure points.
- Encrypt sensitive data on laptops.
- Adopt and enforce levels (secret, classified, sensitive, general, etc) of data classification and don't allow employees to transfer defined levels of data to unmanaged systems or PCs.
- Consider using end-point activity enforcement products to restrict USB transfers.
- Use a content-filtering technology along with enforced policies that can monitor and restrict transferring of sensitive data over networks
- Deploy two-factor authentication for all users to access data.
- Audit authentication.
- Take a strategic, layered approach to data security, rather than focusing solely on one or two exposure points.
- Encrypt sensitive data on laptops.
- Adopt and enforce levels (secret, classified, sensitive, general, etc) of data classification and don't allow employees to transfer defined levels of data to unmanaged systems or PCs.
- Consider using end-point activity enforcement products to restrict USB transfers.
- Use a content-filtering technology along with enforced policies that can monitor and restrict transferring of sensitive data over networks
- Deploy two-factor authentication for all users to access data.
- Audit authentication.
posted by Matt Graves at 8:16 AM
0 Comments:
Post a Comment
<< Home