IT users are (mostly) good people - help them stay that way.
Phil Beesley
Cybersecurity without the BS | Helping leaders make smart security decisions at the right time, for the right price.
Everyone uses their work laptop / computer for non work related purposes from time to time. Maybe just to browse the news, sport or look at their next summer holiday. The best employers embrace this culture by empowering and trusting their employees to play by the rules.
But what happens when a user makes an innocent mistake by clicking a fraudulent email link or visiting an infected website? What happens if they aren't up to date with the organisations acceptable use policy (lets be honest, who really pays attention!) and inadvertently share some PII data via unauthorised tools (USB, email, online storage etc.)
If that user causes a GDPR breach which eventually leads to a financial penalty and reputation damage, who's really to blame? Them for failing to adhere to company policy - or the company for failing to provide adequate protection / training? What is sure is the user who has caused the breach will feel guilty - and although it was accident there will be an impact to the business.
Therefore, it is important businesses have the tools in place to help protect against innocent mistakes. At the same time, its equally important to have the tools to protect against malicious insider breaches. The type of technology which protects against this type of breach is often referred to as insider threat detection. However, the word "threat" does seem harsh when referring to accidental breaches.
62% of insider breaches are unintentional. Whilst a malicious breach ultimately costs more per incident, the volume of unintentional breaches means they cost more to the business. Therefore it makes sense to focus on rolling out polices and training packs to protect and educate the good users. However, it is also essential the solution deployed is equally as effective at stopping malicious insider threats.
The Jazz Networks approach is to protect your innocent users from making accidental mistakes. Out of the box rule based policies, machine learning and training policy packs drastically reduce the chances of unintentional breaches.
We offer a free insider threat risk assessment - takes minutes to install and starts working immediately. A free analyst report provides contextual information about what's happening in your environment and where your blind spots are.
And when the bad guys - either malicious insiders or external attackers - we've still got you covered........