Overconfident Employees and the Lack of Security Tools Lead to Risky Business
|
|
- Gerard Henderson
- 8 years ago
- Views:
Transcription
1 White Paper Overconfident Employees and the Lack of Security Tools Lead to Risky Business A SilverSky Survey of Security Habits SilverSky 440 Wheelers Farms Road Suite 202 Milford CT silversky.com 2013 SilverSky
2 P.2 Overconfident Employees and Lack of Security Tools Lead to Risky Business White Paper Introduction It s well documented in social and behavioral psychology that people tend to suffer from overconfidence when comparing their own behavior to others. After all, it s human nature to believe that one is better or at least no worse than his/her friends, neighbors and coworkers. SilverSky recently conducted a survey among business users to assess security habits and perceptions. What we found fell in line with the Lake Wobegon Effect (i.e., overconfidence) of users believing that they are more secure than their fellow coworkers. However, this overconfidence on the part of employees could potentially be dangerous for businesses, since it could lead to poor security habits which ultimately lead to real legal, regulatory and reputational risks through data loss. Concerned but Confident A total of 119 business users across various industries responded to this survey, and when it comes to security in the workplace, most employees think they have safer habits than others. In fact, when it comes to security, 98 percent of employees claim they re either equal to or better than their careless co-workers. Specifically, nearly 43 percent of surveyed business users said they are very concerned go above and beyond the company-prescribed procedures to protect their business communications, while 30 percent claim to be much more security conscious than their coworkers. Additionally, more than half (53 percent) are also quick to throw others under the bus, saying they ve received unencrypted, sensitive data from sensitive attachments to social security numbers to private health information via . Yet only 17 percent admit to sending out this risky data themselves. Are just a small minority of individuals with poor habits responsible for the majority of risky s and sensitive data loss? Which statement applies to you with respect to security? 52.1% I am somewhat concerned follow the basic company prescribed procedures to protect my communications. 42.9% 5.0% I am very concerned go above and beyond the company prescribed procedures to protect my communications. I am not really concerned typically don t follow the company prescribed procedures. Figure 1: Users are generally concerned about security 1
3 P.3 Overconfident Employees and Lack of Security Tools Lead to Risky Business White Paper Are you more security conscious about than your coworkers? I am about the same as my coworkers. 23.7% 29.8% I am much more security conscious than my coworkers. I am a little more security conscious than my coworkers. 44.7% 1.8% I am less security conscious than my coworkers. Figure 2: Overconfidence in being more security conscious Top Security Threats We also asked respondents to tell us how concerned they are with particular threats (scoring is based on 1 being very concerned, 2 somewhat concerned, and 3 not concerned). By far the greatest perceived threat is s with malware, with an average rating of 1.52 (somewhere between very and somewhat concerned). The next top two threats were fairly close, with average ratings of 1.62 and 1.68 respectively for s being shared with unintended recipients and phishing s. Finally, the bottom two threats scored 1.88 and 1.91 respectively for junk mail and s being intercepted by bad guys. Please tell us how concerned you are for each threat to your security. s with malware sent to you. Your s being shared with unintended recipients. Phishing s sent to you. Junk sent to you. Your s being intercepted by bad guys. Figure 3: Top security concerns
4 P.4 Overconfident Employees and Lack of Security Tools Lead to Risky Business White Paper anti-virus protection has come a long way over the past few years, but clearly malware is still a top of mind concern for business users. Nearly 60 percent said they were very concerned about malware probably due to the fact that malware typically causes more immediate damage to one s computer system. However, the next highest scoring concerns show that the landscape is evolving. Phishing s don t usually post the same havoc-wreaking threat to a computer that malware does, but rather they are used to gather sensitive information for some malicious activity, like identity theft. Likewise, the concern over s being shared (as opposed to being intercepted) by others also poses a similar threat in terms of losing sensitive data. Do No Evil, But See Plenty of Evil Next, we asked respondents to tell us which security faux pas has happened to them. Surprisingly, 25 percent of respondents claim to not have experienced any of these common mistakes. Is this group much more security conscious than their coworkers, or are they very concerned with security? In fact, the answer is no to both. Of this 25 percent who have done no wrong, only 35 percent said they are very concerned about security, while 55 percent think they are not any more security conscious than others. For those who have committed some sort of sin, the most common occurrences by far were sending s to the wrong person by mistake and receiving unencrypted s with sensitive information in them. However, although more than 50 percent received sensitive information in the open, only 21 percent and 17 percent have claimed to have sent unencrypted, sensitive corporate info or personal identifiable information (PII), respectively. Which of the following scenarios apply to you? (check all that apply) I ve sent an to the wrong person/address by mistake. I ve received unencrypted s with sensitive info* in the body of an without using encryption. 56.1% 52.6% I have done none of the above. 25.4% I ve sent sensitive corporate info* without using encryption. 21.1% I ve included sensitive info* in the body of an without using encryption. 16.7% *Sensitive info includes credit card numbers, social security numbers, financials, internal documents, etc. Figure 4: Common security faux pas
5 P.5 Overconfident Employees and Lack of Security Tools Lead to Risky Business White Paper Additionally, we asked whether the respondents knew of anyone in their companies who have been reprimanded for sending out sensitive information unintentionally. One in five respondents said yes, while 24 percent were unsure. Compared to 53 percent of respondents having received sensitive, unprotected content, this would indicate that companies are not able to fully track data leaks and take actions to address or prevent such risky behavior. Improving Security Finally, we asked a series of questions about what tools are in place to help improve security and what users think of their companies current security posture. For tools, we asked about the use of content filtering or data loss prevention (DLP) and encryption solutions. Only 32 percent of respondents said their companies use filtering, and even fewer than 21 percent said they have adopted encryption. There is also a very high percentage of respondents that said they are unsure if either solution is employed at their companies, 23 percent for DLP and 34 percent for encryption. This may indicate a lack of training and awareness, both of which are critical to helping ensure proper security. Not surprisingly, when we asked how potentially having or actually using DLP or encryption made one feel about sending , 93 percent and 97 percent respectively said they would feel more secure. When it comes to overall security, 46 percent of business users said their companies could be doing more. Specifically, 68 percent of respondents said that IT should focus more on preventing employees from inadvertently ing out sensitive information, versus 32 percent saying that willful and malicious data loss on the part of employees is the greater threat. Conclusion Poor security habits on the part of employees are a big cause of compliance and business risks for companies. In this SilverSky survey of business users, we find that in general, employees are concerned about security (95 percent), but too many think of themselves as more security conscious than their colleagues (54 percent). This hubris in turn could lead to careless behavior such as sending s to unintended recipients (56 percent), receiving sensitive data in unencrypted s (53 percent), or sending out confidential corporate information or PII (38 percent combined). At least 20 percent of respondents know of a coworker who has been reprimanded for sensitive information leaks via , but only 32 percent of companies use an DLP solution and even fewer (21 percent) use encryption. As such, 46 percent of respondents feel that security could be improved at their companies. IT has typically shied away from implementing too many tools that could hamper usability or that end up, as the saying goes, just keeping honest people honest. But it appears that solutions such as DLP and encryption would serve to protect users from the most likely threat themselves as 68 percent of respondents said that the greater threat to businesses are employees unintentionally sending out sensitive information via .
The Unintentional Insider Risk in United States and German Organizations
The Unintentional Insider Risk in United States and German Organizations Sponsored by Raytheon Websense Independently conducted by Ponemon Institute LLC Publication Date: July 2015 2 Part 1. Introduction
More informationGlobal IT Security Risks: 2012
Global IT Security Risks: 2012 Kaspersky Lab is a leading developer of secure content and threat management solutions and was recently named a Leader in the Gartner Magic Quadrant for Endpoint Protection
More informationProtect Yourself. Who is asking? What information are they asking for? Why do they need it?
Protect Yourself Your home computer serves many purposes: email, shopping, social networking and more. As you surf the Internet, you should be aware of the various ways to protect yourself. Of primary
More informationDigital Consumer s Online Trends and Risks
Digital Consumer s Online Trends and Risks Modern consumers live a full-scale digital life. Their virtual assets like personal photos and videos, work documents, passwords to access social networking and
More informationWhy Email Encryption is Essential to the Safety of Your Business
Why Email Encryption is Essential to the Safety of Your Business What We ll Cover Email is Like a Postcard o The Cost of Unsecured Email 5 Steps to Implement Email Encryption o Know Your Compliance Regulations
More information2009 Antispyware Coalition Public Workshop
2009 Antispyware Coalition Public Workshop Jeffrey Fox Technology Editor, Consumer Reports Media contact: Lauren Hackett, 914-378-2561 Background For several years, Consumer Reports has been testing and
More informationEmail Compliance in 5 Steps
Email Compliance in 5 Steps Introduction For most businesses, email is a vital communication resource. Used to perform essential business functions, many organizations rely on email to send sensitive confidential
More informationAWARENESS T E C H N O L O G I E S. Complete internal threat solution on the endpoint delivered as a service. A Whitepaper By Ron Penna
Complete internal threat solution on the endpoint delivered as a service About, Inc, Inc (ATI) is a Los Angeles, California company founded in 2002 who has over 200,000 total users and 10,000 corporate
More information2011 Data Breach Notifications Report
2011 Data Breach Notifications Report December 2011 2011 Report on Data Breach Notifications History, Laws and Regulations On October 31, 2007, the Commonwealth s Data Security Breach Law, Mass. Gen. Law
More informationWhat Spammers Don t Want You To Know About Permanently Blocking Their Vicious E-mails
2000 Linwood Ave Suite 19J Fort Lee, NJ 07024-3012 What Spammers Don t Want You To Know About Permanently Blocking Their Vicious E-mails Following Last Year s Hack Attack At Epsilon, You May Be Overwhelmed
More informationWhat SMBs Don t Know Can Hurt Them Perceptions vs. Reality in the New Cyber Threat Landscape
What SMBs Don t Know Can Hurt Them Perceptions vs. Reality in the New Cyber Threat Landscape Contents Introduction 2 Many SMBs Are Unaware Of Threats 3 Many SMBs Are Exposed To Threats 5 Recommendations
More informationA safe, healthy and drug-free workplace is everybody s responsibility. Thanks for making it yours.
TOOL BOX TALK 1: DRUG-FREE WORKPLACES: The Basic Message Worksite alcohol and drug use cannot be taken lightly, especially on construction sites where we rely on each other for safety. As a worker on this
More informationData Breaches, Identity Theft, and Employees
Data Breaches, Identity Theft, and Employees Joining the Dots and Dispelling the Myths What you ll learn Data Breaches + identity theft + employees Data Breaches or Data Donations? Data Breaches + Identity
More informationWhat s Yours Is Mine. Global Results. How Employees are Putting Your Intellectual Property at Risk. Embargo until Wednesday, Feb.
What s Yours Is Mine How Employees are Putting Your Intellectual Property at Risk Global Results Embargo until Wednesday, Feb. 6 Methodology The Ponemon Institute surveyed 3,317 individuals in 6 countries
More informationUser Documentation Web Traffic Security. University of Stavanger
User Documentation Web Traffic Security University of Stavanger Table of content User Documentation... 1 Web Traffic Security... 1 University of Stavanger... 1 UiS Web Traffic Security... 3 Background...
More informationReduce Your Network's Attack Surface
WHITE PAPER Reduce Your Network's Attack Surface Ixia's ThreatARMOR Frees Up Security Resources and Personnel The Threat Landscape When you re dealing with network security, one of the primary measurements
More informationGlobal Corporate IT Security Risks: 2013
Global Corporate IT Security Risks: 2013 May 2013 For Kaspersky Lab, the world s largest private developer of advanced security solutions for home users and corporate IT infrastructures, meeting the needs
More informationState of Security Survey GLOBAL FINDINGS
2011 State of Security Survey GLOBAL FINDINGS CONTENTS Introduction... 4 Methodology... 6 Finding 1: Cybersecurity is important to business... 8 Finding 2: The drivers of security are changing... 10 Finding
More informationCommunity First Health Plans Breach Notification for Unsecured PHI
Community First Health Plans Breach Notification for Unsecured PHI The presentation is for informational purposes only. It is the responsibility of the Business Associate to ensure awareness and compliance
More informationTrend Micro Hosted Email Security Stop Spam. Save Time.
Trend Micro Hosted Email Security Stop Spam. Save Time. How it Works: Trend Micro Hosted Email Security A Trend Micro White Paper l March 2010 Table of Contents Introduction...3 Solution Overview...4 Industry-Leading
More informationHow to Deploy the Survey Below are some ideas and elements to consider when deploying this survey.
SECURITY AWARENESS SURVEY Is a survey necessary A survey will give you insight into information security awareness within your company. The industry has increasingly realized that people are at least as
More informationState of the Phish 2015
Introduction The threat is real Phishing continues to pose a growing threat to the security of industries of every kind from financial organizations to government contractors to healthcare firms. Though
More informationEmail Privacy 101. A Brief Guide
Trend Micro, Incorporated A brief guide to adding encryption as an extra layer of security to protect your company in today s high risk email environment. A Trend Micro White Paper I February 2009 A brief
More informationComprehensive real-time protection against Advanced Threats and data theft
TRITON AP-WEB Comprehensive real-time protection against Advanced Threats and data theft Your business and its data are under constant attack. Traditional security solutions no longer provide sufficient
More informationNationwide Cyber Security Survey
Research Nationwide Cyber Security Survey Presented by Harris Poll Executive Summary: Cyber-Security Cyber-security is a low priority for many because the threat is not palpable Eight in ten (79%) have
More informationIT Security DO s and DON Ts
For more advice contact: IT Service Centre T: (01332) 59 1234 E: ITServiceCentre@derby.ac.uk Online: http://itservicecentre.derby.ac.uk Version: February 2014 www.derby.ac.uk/its IT Security DO s and DON
More informationApp Reputation Report February 2013 The Authority in App Security
App Reputation Report February 2013 The Authority in App Security Introduction The Appthority App Report for February 2013 provides an overview of the security risks behind 100 free ios and Android apps.
More informationOCT Training & Technology Solutions Training@qc.cuny.edu (718) 997-4875
OCT Training & Technology Solutions Training@qc.cuny.edu (718) 997-4875 Understanding Information Security Information Security Information security refers to safeguarding information from misuse and theft,
More informationFive Strategies for Email Data Loss Prevention
Five Strategies for Email Data Loss Prevention SilverSky 440 Wheelers Farms Road Suite 202 Milford CT 06461 silversky.com 2013 SilverSky P.2 Five Strategies for Email Data Loss Prevention Andy Jaquith
More informationProtecting personally identifiable information: What data is at risk and what you can do about it
Protecting personally identifiable information: What data is at risk and what you can do about it Virtually every organization acquires, uses and stores personally identifiable information (PII). Most
More informationInformation Security Awareness Training. Course Outline. Provides a brief orientation to the topics covered in the module.
Information Security Awareness Training Course Outline Module 1 Information security risks 1. explain what information security means. 2. define the four aspects of information security. 3. understand
More information1. For each of the 25 questions, multiply each question response risk value (1-5) by the number of times it was chosen by the survey takers.
Employee Security Awareness Survey Trenton Bond trent.bond@gmail.com Admin - Version 1.3 Security Awareness One of the most significant security risks that organizations and corporations face today is
More informationRoom for improvement. Building confidence in data security. March 2015
Building confidence in data security March 2015 Businesses have no choice but to engage online with users from external organisations and mobile workers; that is the way the world now operates. Transacting
More informationFederal Cyber Security Outlook for 2010
Federal Cyber Security Outlook for 2010 National IT Security Challenges Mounting How well prepared are IT professionals within U.S. government agencies to respond to foreign cyber threats? Will government
More informationNational Cyber Security Month 2015: Daily Security Awareness Tips
National Cyber Security Month 2015: Daily Security Awareness Tips October 1 New Threats Are Constantly Being Developed. Protect Your Home Computer and Personal Devices by Automatically Installing OS Updates.
More informationStop advanced targeted attacks, identify high risk users and control Insider Threats
TRITON AP-EMAIL Stop advanced targeted attacks, identify high risk users and control Insider Threats From socially engineered lures to targeted phishing, most large cyberattacks begin with email. As these
More informationHSyE HIPAA Training. Summer 2015
HSyE HIPAA Training Summer 2015 Agenda What is HIPAA PII Electronic Security Data Files Desktops Internet Security Home/Outside Network Security Personal Laptops Cell Phones/ Tablets Physical Security
More information10 Quick Tips to Mobile Security
10 Quick Tips to Mobile Security 10 Quick Tips to Mobile Security contents 03 Introduction 05 Mobile Threats and Consequences 06 Important Mobile Statistics 07 Top 10 Mobile Safety Tips 19 Resources 22
More informationTRITON AP-WEB COMPREHENSIVE REAL-TIME PROTECTION AGAINST ADVANCED THREATS & DATA THEFT
TRITON AP-WEB COMPREHENSIVE REAL-TIME PROTECTION AGAINST ADVANCED THREATS & DATA THEFT TRITON AP-WEB COMPREHENSIVE REAL-TIME PROTECTION AGAINST ADVANCED THREATS AND DATA THEFT Your business and its data
More informationEmail Security. Secure Email Encryption: Protect Communication with Personal Certificates. An IceWarp White Paper. October 2008. www.icewarp.
20 Email Security Secure Email Encryption: Protect Communication with Personal Certificates An IceWarp White Paper October 2008 www.icewarp.com 21 Background Email has become the preferred method of communication
More informationData Security in Development & Testing
Data Security in Development & Testing Sponsored by Micro Focus Independently conducted by Ponemon Institute LLC Publication Date: July 31, 2009 Ponemon Institute Research Report Data Security in Development
More informationPerception and knowledge of IT threats: the consumer s point of view
Perception and knowledge of IT threats: the consumer s point of view It s hard to imagine life without digital devices, be it a large desktop computer or a smartphone. Modern users are storing some of
More informationUPDATES FOR MEDICAL PRACTICES: RED FLAGS AND IDENTITY THEFT AND HIPAA PRIVACY CHANGES (FROM HITECH)
UPDATES FOR MEDICAL PRACTICES: RED FLAGS AND IDENTITY THEFT AND HIPAA PRIVACY CHANGES (FROM HITECH) March 2011 Presentation by Jennifer L. Cox, J.D. Red Flags Rollback Red flags is going going and not
More informationCyber Warfare. Global Economic Crime Survey. Causes of Cyber Attacks. David Childers, CEO Compli Vivek Krishnamurthy, Foley Hoag LLP. Why Cybercrime?
Cyber Warfare David Childers, CEO Compli Vivek Krishnamurthy, Foley Hoag LLP Global Economic Crime Survey Cyber crime is the fastest growing economic crime up more than 2300% since 2009 1 in 10 companies
More informationHow Boards of Directors Really Feel About Cyber Security Reports. Based on an Osterman Research survey
How Boards of Directors Really Feel About Cyber Security Reports Based on an Osterman Research survey Executive Summary 89% of board members said they are very involved in making cyber risk decisions Bay
More informationTaking a Data-Centric Approach to Security in the Cloud
Taking a Data-Centric Approach to Security in the Cloud Bob West Chief Trust Officer CipherCloud 2014 CipherCloud All rights reserved 1 Taking a Data-Centric Approach to Cloud Data Protection Bob West
More informationBreaching Bad: New Cyber Security Risks & Regulations Affecting Suppliers At All Tiers
Breaching Bad: New Cyber Security Risks & Regulations Affecting Suppliers At All Tiers Securing the Infrastructure April 2015 Stan Stahl, Ph.D. President Citadel Information Group Phone: 323.428.0441 Stan@Citadel-Information.com
More informationCyber Security. Securing Your Mobile and Online Banking Transactions
Cyber Security Securing Your Mobile and Online Banking Transactions For additional copies or to download this document, please visit: http://msisac.cisecurity.org/resources/guides 2014 Center for Internet
More informationWHITE PAPER. Managed File Transfer: When Data Loss Prevention Is Not Enough Moving Beyond Stopping Leaks and Protecting Email
WHITE PAPER Managed File Transfer: When Data Loss Prevention Is Not Enough Moving Beyond Stopping Leaks and Protecting Email EXECUTIVE SUMMARY Data Loss Prevention (DLP) monitoring products have greatly
More informationCentral and Eastern European Data Theft Survey 2012
FORENSIC Central and Eastern European Data Theft Survey 2012 kpmg.com/cee KPMG in Central and Eastern Europe Ever had the feeling that your competitors seem to be in the know about your strategic plans
More informationERNW Newsletter 29 / November 2009
ERNW Newsletter 29 / November 2009 Dear Partners and Colleagues, Welcome to the ERNW Newsletter no. 29 covering the topic: Data Leakage Prevention A Practical Evaluation Version 1.0 from 19th of november
More information+GAMES. Information Security Advisor. Be a Human Firewall! The Human Firewall' s Top Concerns in the Cyber, People & Physical Domains
Information Security Advisor December 2015 Be a Human Firewall! The Human Firewall' s Top Concerns in the Cyber, People & Physical Domains +GAMES Spot the insider & Human firewall Filtering EXerCISE Good
More informationThe Impact of Wireless LAN Technology on Compliance to the PCI Data Security Standard
The Impact of Wireless LAN Technology on to the PCI Data Security Standard 339 N. Bernardo Avenue, Suite 200 Mountain View, CA 94043 www.airtightnetworks.net Wireless LANs and PCI Retailers today use computers
More informationPage 1. NAOP HIPAA and Privacy Risks 3/11/2014. Privacy means being able to have control over how your information is collected, used, or shared;
Page 1 National Organization of Alternative Programs 2014 NOAP Educational Conference HIPAA and Privacy Risks Ira J Rothman, CPHIMS, CIPP/US/IT/E/G Senior Vice President - Privacy Official March 26, 2014
More informationThe Importance of Cyber Threat Intelligence to a Strong Security Posture
The Importance of Cyber Threat Intelligence to a Strong Security Posture Sponsored by Webroot Independently conducted by Ponemon Institute LLC Publication Date: March 2015 Ponemon Institute Research Report
More informationRecurrent Patterns Detection Technology. White Paper
SeCure your Network Recurrent Patterns Detection Technology White Paper January, 2007 Powered by RPD Technology Network Based Protection against Email-Borne Threats Spam, Phishing and email-borne Malware
More informationWhite Paper. The Importance of Securing Emails as Critical Best Practice within Financial Services. Executive Summary
White Paper The Importance of Securing Emails as Critical Best Practice within Financial Services IN THIS WHITE PAPER 1. Latest survey results Attitudes toward data security within Financial Services conducted
More informationINTRODUCTION 3 TYPES OF QUESTIONS 3 OVERALL RATINGS 4 SPECIFIC RATINGS 6 COMPETITIVE RATINGS 6 BRANCHING 7 EMAIL TRIGGERS 7
2 Table of contents INTRODUCTION 3 TYPES OF QUESTIONS 3 PART ONE: OVERALL RATINGS 4 PART TWO: SPECIFIC RATINGS 6 COMPETITIVE RATINGS 6 BRANCHING 7 EMAIL TRIGGERS 7 PART THREE: DEMOGRAPHICS 8 SURVEY LENGTH
More informationStop Spam. Save Time.
Stop Spam. Save Time. A Trend Micro White Paper I January 2015 Stop Spam. Save Time. Hosted Email Security: How It Works» A Trend Micro White Paper January 2015 TABLE OF CONTENTS Introduction 3 Solution
More informationCrisis Management Guide
Crisis Management Guide The Crisis Management Guide has been designed to help your company effectively respond to a crisis situation. Crises, large and small can be minimized if a thorough Crisis Management
More informationKEEPING UNSTRUCTURED DATA SECURE IN AN UNSTRUCTURED WORLD
KEEPING UNSTRUCTURED DATA SECURE IN AN UNSTRUCTURED WORLD 2 The most recent study by the Ponemon Institute shows that 90% of CIOs and their staffs interviewed admitted that they have had a leak/loss of
More informationSmall and Midsize Business Protection Guide
P r o t e c t i o n G u i d e : C l o s e t h e P r o t e c t i o n G a p Small and Midsize Business Protection Guide Close the protection gap and safeguard your business future Confidence in a connected
More informationBusiness white paper. Missioncritical. defense. Creating a coordinated response to application security attacks
Business white paper Missioncritical defense Creating a coordinated response to application security attacks Table of contents 3 Your business is under persistent attack 4 Respond to those attacks seamlessly
More informationWhite paper. Why Encrypt? Securing email without compromising communications
White paper Why Encrypt? Securing email without compromising communications Why Encrypt? There s an old saying that a ship is safe in the harbour, but that s not what ships are for. The same can be said
More informationHow-To Guide: Cyber Security. Content Provided by
How-To Guide: Cyber Security Content Provided by Who needs cyber security? Businesses that have, use, or support computers, smartphones, email, websites, social media, or cloudbased services. Businesses
More informationPreparing for a Cyber Attack PROTECT YOUR PEOPLE AND INFORMATION WITH SYMANTEC SECURITY SOLUTIONS
Preparing for a Cyber Attack PROTECT YOUR PEOPLE AND INFORMATION WITH SYMANTEC SECURITY SOLUTIONS CONTENTS PAGE RECONNAISSANCE STAGE 4 INCURSION STAGE 5 DISCOVERY STAGE 6 CAPTURE STAGE 7 EXFILTRATION STAGE
More informationRisk Assessment Guide
KirkpatrickPrice Assessment Guide Designed Exclusively for PRISM International Members KirkpatrickPrice. innovation. integrity. delivered. KirkpatrickPrice Assessment Guide 2 Document Purpose The Assessment
More informationViewing my Electronic Health Record
Viewing my Electronic Health Record An Introduction for Patients Online Electronic Health Record Empowering and Educating Patients Patient Information Guide Supported By Greater Huddersfield Clinical Commissioning
More informationThe Value of Email DLP
The Value of Email DLP Identifying and Minimizing Your Organization s Greatest Risk By ZixCorp www.zixcorp.com Zix Email Data Loss Prevention Page 1 CLICKING SEND IS ALMOST TOO EASY. We ve all had those
More informationInformation Security Training. Jason Belford Jimmy Lummis
Information Security Training Jason Belford Jimmy Lummis Presenters Who are these guys? Jason Belford Principal Information Security Engineer Jimmy Lummis Information Security Policy and Compliance Manager
More informationSurvey on the Internet Security Awareness
Survey on the Internet Security Awareness Implementation date: March 2009 *This survey was conducted as part of Academic Frontier Project for Private Universities funded by MEXT(Ministry of Education,
More informationIntralinks Survey Report
Intralinks Survey Report Safe Sharing: A Survey of Enterprise IT Decision Makers on Best Practices for Adopting File Sync and Share Applications New research conducted by Harris Poll June 2014 Copyright
More informationWhat You Don t Know Will Hurt You: A Study of the Risk from Application Access and Usage
What You Don t Know Will Hurt You: A Study of the Risk from Application Access and Usage Sponsored by ObserveIT Independently conducted by Ponemon Institute LLC June 2015 Ponemon Institute Research Report
More informationSURVEY REPORT SPON. Security Awareness Training Effectiveness Report. Results of a Survey of KnowBe4 Customers and Non-Customers. Published July 2013
SURVEY REPORT Security Awareness Training Effectiveness Report Results of a Survey of An Osterman Research Survey Report sponsored by Published July 2013 SPON sponsored by Osterman Research, Inc. P.O.
More informationIT SECURITY RISKS SURVEY 2014: A BUSINESS APPROACH TO MANAGING DATA SECURITY THREATS
IT SECURITY RISKS SURVEY 2014: A BUSINESS APPROACH TO MANAGING DATA SECURITY THREATS Contents Introduction... 2 Key figures... 3 Methodology... 4 Concerns and priorities of IT managers: data comes first...
More informationDon't Be The Next Data Loss Story
Don't Be The Next Data Loss Story Data Breaches Don t Discriminate DuPont scientist downloaded 22,000 sensitive documents as he got ready to take a job with a competitor Royal London Mutual Insurance Society
More informationWhen Fraud Comes Knocking
When Fraud Comes Knocking Identity theft occurs when someone uses your name, Social Security number, credit card number, or other personal information without your permission. It is a very serious crime.
More informationConnect Smart for Business SME TOOLKIT
Protect yourself online Connect Smart for Business SME TOOLKIT WELCOME To the Connect Smart for Business: SME Toolkit The innovation of small and medium sized enterprises (SMEs) is a major factor in New
More informationTechnology Blueprint. Protect Your Email. Get strong security despite increasing email volumes, threats, and green requirements
Technology Blueprint Protect Your Email Get strong security despite increasing email volumes, threats, and green requirements LEVEL 1 2 3 4 5 SECURITY CONNECTED REFERENCE ARCHITECTURE LEVEL 1 2 4 5 3 Security
More informationFIVE STRATEGIES FOR EMAIL DATA LOSS PREVENTION.
FIVE STRATEGIES FOR EMAIL DATA LOSS PREVENTION. SUMMARY Email is the primary source of communication for most organizations and their employees. Everyone has email, everyone uses email and it not only
More informationMore Details About Your Spam Digest & Dashboard
TABLE OF CONTENTS The Spam Digest What is the Spam Digest? What do I do with the Spam Digest? How do I view a message listed in the Spam Digest list? How do I release a message from the Spam Digest? How
More informationTEN COMMANDMENTS OF EFFECTIVE SECURITY AWARENESS TRAINING
Ralph Massaro VP of Operations TEN COMMANDMENTS OF EFFECTIVE SECURITY AWARENESS TRAINING 10/26/2012 1 Humans - The Weakest Link? 82% of large organizations had staff driven security breaches(1) 47% had
More informationWho Wants To Literally Save Thousands In AdWords Management Fees?
How to Keep Your PPC Management Company Honest Who Wants To Literally Save Thousands In AdWords Management Fees? HERE S THE PROBLEM Not all PPC managers are created equal. Some are really good at what
More informationTRENDS IN THE THREAT LANDSCAPE
TRENDS IN THE THREAT LANDSCAPE Guy Eilon, SEE Regional Manager April 2013 geilon@websense.com TRITON STOPS MORE THREATS. WE CAN PROVE IT. 2013 Websense, Inc. Page 1 CHANGING CUSTOMERS NEEDS 90% of companies
More informationThe Pros and Cons of DLP Tools
Risks and Rewards of Using Data Loss Prevention Technology in Information Security Programs reprinted with permission of Margaret P. Eisenhauer, Esq., CIPP Companies spend substantial time and money developing
More informationKaspersky Fraud Prevention platform: a comprehensive solution for secure payment processing
Kaspersky Fraud Prevention platform: a comprehensive solution for secure Today s bank customers can perform most of their financial operations online. According to a global survey of Internet users conducted
More informationThe problem with privileged users: What you don t know can hurt you
The problem with privileged users: What you don t know can hurt you FOUR STEPS TO Why all the fuss about privileged users? Today s users need easy anytime, anywhere access to information and services so
More informationMobile Security Landscape in 2014 - A Report
The Mobile Security Landscape in 2014 Securing BYOD in today s connected workplace A report by: Copyright 2014. All rights Reserved. The Role for Mobile Operators in Enterprise Mobility Security Working
More informationC-SAVE. Scenario #1 Jake and the Bad Virus. The two major C3 concepts this scenario illustrates are:
Scenario #1 Jake and the Bad Virus The two major C3 concepts this scenario illustrates are: Cyber Security: Jake compromised his computer s security by providing personal information to an unknown online
More informationDo You Know What You Don t Know?
SESSION ID: GRC-F01 Do You Know What You Don t Know? Marcus H. Sachs, P.E. @MarcusSachs Apply Slide Next week you should: Identify where unknowns are hiding within your organization In the first three
More informationMust score 89% or above. If you score below 89%, we will be contacting you to go over the material individually.
April 23, 2014 Must score 89% or above. If you score below 89%, we will be contacting you to go over the material individually. What is it? Electronic Protected Health Information There are 18 specific
More informationCHECK POINT THE MYTHS OF MOBILE SECURITY
CHECK POINT THE MYTHS OF MOBILE SECURITY Mobility has transformed the workplace. Laptops, smartphones and tablets not only enable an organization s road warriors, but also create freedoms for all employees
More informationITAR Compliance Best Practices Guide
ITAR Compliance Best Practices Guide 1 Table of Contents Executive Summary & Overview 3 Data Security Best Practices 4 About Aurora 10 2 Executive Summary & Overview: International Traffic in Arms Regulations
More informationOutbound Email Security and Content Compliance in Today s Enterprise, 2005
Outbound Email Security and Content Compliance in Today s Enterprise, 2005 Results from a survey by Proofpoint, Inc. fielded by Forrester Consulting on outbound email content issues, May 2005 Proofpoint,
More informationData Loss Prevention in the Enterprise
Data Loss Prevention in the Enterprise ISYM 525 Information Security Final Paper Written by Keneth R. Rhodes 12-01-09 In today s world data loss happens multiple times a day. Statistics show that there
More informationCybersecurity Best Practices
Ten Essential Cybersecurity Best Practices Banking Business Employees Brought to you by: 1 Did you know? One in five small-to-medium-sized companies were the victims of cyber breaches in 2013.1 In 76%
More informationSocial Networking and its Implications on your Data Security
Social Networking and its Implications on your Data Security Canadian Chamber of Commerce of the Philippines June 8, 2011 Warren R Bituin Partner -SGV & Co. About the Speaker Warren R. Bituin SGV & Co./Ernst
More informationAB 1149 Compliance: Data Security Best Practices
AB 1149 Compliance: Data Security Best Practices 1 Table of Contents Executive Summary & Overview 3 Data Security Best Practices 4 About Aurora 10 2 Executive Summary & Overview: AB 1149 is a new California
More information2014: A Year of Mega Breaches
2014: A Year of Mega Breaches Sponsored by Identity Finder Independently conducted by Ponemon Institute LLC Publication Date: January 2015 Ponemon Institute Research Report Part 1. Introduction 2014: A
More informationProtecting Your Business from Online Banking Fraud
Protecting Your Business from Online Banking Fraud Robert Comella, Greg Farnham, John Jarocki October 2009 Objective According to Brian Krebs of The Washington Post, smaller organizations are suffering
More information