Insiders pose greatest security risk
October, 2002
In a survey published by Defcom Information Security Ltd. it is stated that; "fifty eight percent of all senior IT managers think that their own IT departments pose the largest threat to IT security. Security holes are often opened during system upgrades or when integrating new applications into the corporate infrastructure, claim senior managers."
The report goes on to say; "that 67 per cent of senior IT security managers felt that their IT departments lacked the requisite skills to handle the widening spectrum of security threats that exist today. The same number (67 per cent) also considered employees to be a major threat to corporate IT security. Only 10 per cent, by contrast say malicious hackers as the largest threat to security."
The Defcom survey consulted 20 senior IT security managers of household name banks, financial institutions and energy related businesses at conferences in London and Edinburgh on 3rd and 16th October 2002.
These findings only go to strengthen the case for increasing systems security by limiting access to resources to those users who require this access to perform their job. Rather than, as is usually the case allowing any network registered user to access all areas.
Reflex Disknet Pro has been designed to afford such control on either a user or user group basis. Additionally access attempts are audited and can be configured to alert by e-mail or SMS to a designated security officer. Read more about Reflex Disknet Pro here
The report goes on to say; "that 67 per cent of senior IT security managers felt that their IT departments lacked the requisite skills to handle the widening spectrum of security threats that exist today. The same number (67 per cent) also considered employees to be a major threat to corporate IT security. Only 10 per cent, by contrast say malicious hackers as the largest threat to security."
The Defcom survey consulted 20 senior IT security managers of household name banks, financial institutions and energy related businesses at conferences in London and Edinburgh on 3rd and 16th October 2002.
These findings only go to strengthen the case for increasing systems security by limiting access to resources to those users who require this access to perform their job. Rather than, as is usually the case allowing any network registered user to access all areas.
Reflex Disknet Pro has been designed to afford such control on either a user or user group basis. Additionally access attempts are audited and can be configured to alert by e-mail or SMS to a designated security officer. Read more about Reflex Disknet Pro here