Higher risk means better strategies needed
SECURITY| June 25, 2012, 11:28 a.m.
Information is the lifeblood of business. Valuable corporate data is available to employees, business partners and contractors. It is accessed locally, in the cloud and virtual environments, providing instant access to non-public sensitive information. Making matters worse, employees typically do not ask permission to load third-party software or applications on their laptops and mobile phones, devices that are connected to their companies' networks and data stores.
The convenience and business value of "information anywhere" comes with risk. While companies want to support devices, software and applications that enable employees to get the job done, they must do so while carefully monitoring and managing business risks related to the use of information and IT.
“One solution is information security everywhere, but this is impractical and unachievable. Organisations need to determine when convenience results in too much risk and what should be done to limit risks. This is a major challenge, especially when you consider that most organisations cannot answer the simple question, ‘What is our information risk today?’” says Bruce Goodwill, Sales Director – EMEA, LATAM and Australia at AVG.
A good place to start, he says, is to treat online security the same way that businesses treat corporate governance and brand protection, and make it a boardroom issue. “This is not just a technology debate,” he points out. In addition, companies should protect, and keep protection updated for all computers and mobile computing devices that are brought in or taken home by staff, contractors, clients and visitors. Another measure is to promote strong password management, with password and username combinations that are not easy to guess and which include a combination of letters and numbers.
“Many businesses assume that because they have security software installed on their PCs, they are protected. However, the threat landscape is growing exponentially. In addition to increasing malware attacks via the Web, companies need to be wary of mobile devices that connect to their networks, and the risks posed by social networks and disgruntled employees. In order to manage this, organisations should begin by defining the business risk from the top down and then prioritising them,” Goodwill says.
As a basis, an effective security software suite will keep the bulk of threats at bay on a company’s PCs and laptops. Some, like AVG Internet Security, provide additional defences against attacks via social networks through products like Linkscanner and Online Shield. This also applies to security software for mobile devices. Goodwill points out that with the number of mobile devices entering company networks today, mobile security software has become as essential as PC and server protection.
MORE SECURITY NEWS
CBN issues directive on two factor authentication for internal banking processesThe Central Bank of Nigeria has issued a directive requiring all deposit money banks (DMBs) to implement two factor authentication for internal processes this year. Read More
SA: 57% could not recover money stolen in online fraudA recent survey conducted by Kaspersky Lab and B2B International found that more than half of those respondents in South Africa who lost money in fraudulent online transactions did not get all – or sometimes any – of their funds back. Read More
Addressing the mobility gap in corporate securityMobile devices have the potential to open up corporate networks to a wide variety of threats, and tackling this challenge requires a comprehensive mobility strategy, says DCC. Read More
Keeping yourself safe in 2015 – Kaspersky Lab Examines IT security trends globally and in KenyaCyber security is something that nobody can take for granted. With attacks escalating as a result of people's increased connectedness, there can be no respite for being vigilant, says Kaspersky Lab. Read More
ESET: Internet Explorer most vulnerable Microsoft Windows componentInternet Explorer, Microsoft’s ubiquitous web browser, has topped an ESET list of the most frequently targeted Windows components. Read More
What Egypt’s telcos can learn from the Etisalat website hackInfoblox says Etisalat’s Doman Name System (DNS) compromise could easily happen to others. Read More
How to eschew fraudsters, by E-PPANA group focusing on electronic payment security, the E-Payment Providers Association of Nigeria (E-PPAN), has released tips that will enable Nigerians to avoid the menace of fraudsters. Read More
Kaspersky Lab launches Online Radar for most dangerous cyberthreatsKaspersky Lab is launching an online service that brings together all the information it holds on the most sophisticated cyber campaigns. Read More
Ivory Coast regulator warns about cybercrimeIvory Coast officials are stepping up their action against rampant cyber crime. Read More
Kaspersky Lab: Emerging Threats in the APT World - Predictions for 2015Kaspersky Lab experts have released a list of the top emerging threats in the APT world. Read More
FEATURED STORYUCC launches 2015 ACIA awards
Uganda has launched the fifth Annual Communications and Innovation Awards, which celebrate and foster ICT innovation and achievement.
BEST READ NEWS
IN DEPTHKenya’s digital TV battle hots up
Kenya’s journey to Digital TV broadcasting took a new turn this week, when the Communication Authority of Kenya (CAK) accused three local media firms of intent to disrupt the process.