Head of the Information Security Department at SearchInform Alexey Drozd believes that SMBs are most exposed to information security risks. The reason is that they, as a rule, do not use specialized software that allows for automated control of employee actions and information movement. Therefore, managers cannot assess the likelihood of risks and the effectiveness of possible data protection measures.
To clarify the situation, SearchInform analysts summarized data on incidents in 50 SMB companies from six industries (wholesale and retail trade, manufacturing, services, IT, construction, fuel and energy complex) that were provided with IS outsourcing services. Data collected using DLP systems showed that during the study (it lasted several months), attempts to leak data were recorded at all 50 companies.
in attempts to leak corporate data, employees jamaica mobile database often (in 56% of cases) used external media: flash drives, hard drives, mobile phones and other equipment. Then, by a large margin, come mail (21% of cases) and clouds (19%).
"To prevent employees from dumping data onto external media, the employer can impose a ban on copying data of a certain format. Or any documents from specific PCs. However, this runs the risk of slowing down some business processes, since then employees will not be able to perform some of their job responsibilities. Therefore, such a measure should be applied selectively. It is more effective to use a data encryption tool: the document will be copied onto an external media, but the user will be able to open it only on authorized PCs, or under other conditions (for example, the presence of a password). This will allow employees to exchange data with each other, but will prevent it from being taken outside the company," says Alexey Drozd.