SlideShare a Scribd company logo

Va\\lue of e-safebusiness solutions

Download as PPTX, PDF
I
iansadler

The document discusses the need for organizations to implement and monitor an Acceptable Use Policy (AUP) to govern employee use of company technology and infrastructure. An effective AUP balances productivity, security, compliance with regulations, and legal issues. It also discusses managing employee behavior with tools like monitoring internet use, images, USB devices, and training to ensure compliance with the AUP and address risks. The e-safe business solution helps reconcile the AUP with regulatory requirements like Lexcel and SRA, providing automated monitoring, management and reporting to address compliance issues.

1 of 31
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
Acceptable Use PoliciesBalancing Productivity and Compliance“Employees expect personal internet access at work. This raises security, productivity, HR, compliance, bandwidth and legal issues which cross multiple departmental boundaries”“Organizationsneed to create, implement and monitor an Acceptable Use Policy (AUP) which governs the use of company infrastructure and which is backed up by both effective tools, regular monitoring and comprehensive training”“This presentation discusses some of the background issues that affect the management of a balanced AUP which employees understand and works with Risk Based Regulation”Knowledgeframee-safe business
Acceptable Use PoliciesBalancing Productivity and ComplianceAs society becomes increasingly connected so professional service firms have to adapt to, and take advantage of, the business benefits of online communication, connectivity and collaboration.EmailVOIPProfessionalServices FirmMobile PhoneWeb ConferencingInstant MessagingSocial Networking
Acceptable Use PoliciesBalancing Productivity and ComplianceClients are more demandingThis change is accelerating, its scope is broadening and its impact is global.Regulatory pressures are escalatingCompetition is fierce and recruitment is increasingly difficult
Society is hooked on all-pervasive, always-on connectivity. The boundaries between work, social and leisure time are becoming nonexistent.InternetMobile PhoneWeb ConferencingVOIPSocial NetworkingI.M.PDAsE-mail
The OrganizationProductivityFor most of us, not having online access would severely impact our productivity.For a growing percentage, full time, instant, multi-device connectivity is mission critical.ConnectednessConnectedness provides a huge competitive advantage particularly if governed by an ITC Acceptable Use Policy which is integrated into its business vision and strategy.
The OrganizationDemographicsAt the same time workplace demographics are changingExisting staff members are being replaced by a new generation of knowledge workersConnectednessThey have never known a world without the internet, Google, Facebook, YouTube, text messaging and camera phones, they are naturally collaborative and connected.
60%
The OrganizationDemographicsIn order to compete for this valuable talent base every organization has to offer an always on, connected, collaborative environment At the same time workplace demographics are changingConnectednessIt has to support the way in which the “everyone, everything, everywhere, connected” generation, live and work.
VOIPWeb ConferencingText MessagingIn today's environment workers use social networking sites and online communities for business communications60%60% use social networking sitesat work5%10%25%Whilst no one doubts that connectivity, communication and collaboration tools dramatically increase knowledge worker productivity there is the realisation that these same tools increase business risks for the employer.
These changes will have a profound effect not only will you have to understand and manage these new connectivity tools but also:Manage the behaviour of users
These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to:Manage the behaviour of usersbalance security and network reliability
These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to:Manage the behaviour of usersMaintain employee productivity and safetybalance security and network reliability
These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to:Manage the behaviour of usersEnsure compliancewith regulatory rules and guidelines.Maintain employee productivity and safetybalance security and network reliability
The risks fall into two main categories: Reputational Damagefor example, the loss of client data, IP contravention,breach of data protection law, negative tweets & blogsHR IssuesIn particular the employees’ right to work within a secure, regulated and protected online environmenttogether with developing policies and strategies which help connected employees maintain a work/life balance.
“Organizationsneed to develop a strategy, driven by the business needs of the practice which balances increased regulation, enhanced security and improved productivity with the social and work needs of permanently connected employees.”
Both Lexcel V4 and Risk Based Regulation from the SRA impose additional monitoring and reporting burdens on law firms.LexcelV4SRA
Both Lexcel V4 and Risk Based Regulation from the SRA impose additional monitoring and reporting burdens on law firms.LexcelV4RegulatoryBurdenSRA
Both internal governance and exterior regulation impose additional monitoring and reporting burdens .InternalRegulatoryCostRegulatoryBurdenRegulation in particular appears to be moving away from the “yearly snapshot” approach to a continuous monitoring model with a form of credit scoring applied in real time.External
This impacts costs and possibly even ability to attract clients and recruit talent.There is, therefore, a direct link between a clearly written Acceptable Use Policy, continuous compliance monitoring and profit.
Being compliant is a business imperative. However monitoring and managing ongoing compliance together with reporting to regulators has the potential to take up valuable management time.e-safe business reconciles Acceptable Use with Lexcel V4 and Risk Based Regulation to provide a largely automated monitoring, managing and reporting environment which addresses the issues facing growing law firms adapting to the new regulatory environment.
Client Confidentiality
Data Security
Avoiding discriminationAUPE-safeMonitoring&ReportingStrategic Risks
Operational Risks
Regulatory Risks
Business Management
Equality & Diversity
Risk Based Regulatione-safe business reconciles the Acceptable Use Policy with Risk Based Regulation to provide a largely automated monitoring, managing and reporting environment which addresses the issues faced in addressing the ever expanding regulatory environment.
Lexcel/LSC/SRA01.Lexcel V4Strategic Risks
Operational Risks
Regulatory RisksLexcel V44A.4 e-mail policy4A-5 website use4A.6 internet useAUPE-safeMonitoring&ReportingThere is overlap between Lexcel, LSC and SRA rules and guidelines.e-safe business from eSafe Systems

More Related Content

PPT
Network GRC Delivery
iansadler
 
PDF
The impact of mobile devices on information security
Bee_Ware
 
PPSX
Meraj Ahmad - Information security in a borderless world
nooralmousa
 
PPTX
Top Risks of Enterprise Mobility
Symantec
 
PDF
“The Impact of Mobile Devices on Information Security: A Survey of IT and Sec...
Thierry Labro
 
PDF
Unlocking High Fidelity Security
Enterprise Management Associates
 
PDF
EMA Megatrends in Cyber-Security
Enterprise Management Associates
 
PPT
Fortifying for the future: Insights from the 2014 IBM Chief Information Secur...
IBM Center for Applied Insights
 
Network GRC Delivery
iansadler
 
The impact of mobile devices on information security
Bee_Ware
 
Meraj Ahmad - Information security in a borderless world
nooralmousa
 
Top Risks of Enterprise Mobility
Symantec
 
“The Impact of Mobile Devices on Information Security: A Survey of IT and Sec...
Thierry Labro
 
Unlocking High Fidelity Security
Enterprise Management Associates
 
EMA Megatrends in Cyber-Security
Enterprise Management Associates
 
Fortifying for the future: Insights from the 2014 IBM Chief Information Secur...
IBM Center for Applied Insights
 

What's hot (20)

PDF
ultimate-guide-to-getting-started-with-appsec-veracode
Sean Varga
 
PDF
Ultimate_Guide_to_getting_started_with_AppSec
Jessica Lavery Pozerski
 
PPTX
Wearables and Internet of Things (IoT) - MWC15
Symantec
 
PDF
Pulse 2013 - How to run a successful BYOD initiative
Chris Pepin
 
PDF
#EPICFAIL: The biggest mistakes with mobile initiatives and how to avoid them
Chris Pepin
 
PDF
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Sarah Nirschl
 
PDF
CyberSecurity Update Slides
Jim Kaplan CIA CFE
 
PPT
Security architecture rajagiri talk march 2011
subramanian K
 
PPTX
How will social media and other new technologies impact our industry the next...
Atle Skjekkeland
 
PDF
State of Security McAfee Study
Hiten Sethi
 
PPTX
Securing the Digital Economy: Reinventing the Internet for Trust
Accenture Insurance
 
PDF
The advantages of Cloud Application Control
Web Werks Data Centers
 
PDF
Managing Cyber Risk: Are Companies Safeguarding Their Assets?
EMC
 
PDF
application-security-fallacies-and-realities-veracode
sciccone
 
PDF
INFOGRAPHIC: The Evolution of Data Privacy
Symantec
 
PDF
2014 Data Breach Industry Forecast
- Mark - Fullbright
 
PDF
Mobile Device Management Service: Yamana
Softweb Solutions
 
PDF
Best practices for mobile enterprise security and the importance of endpoint ...
Chris Pepin
 
PPTX
Exploring Consumer Attitudes & Actions on Key Tech Policy Issues 2014
Edelman
 
PPTX
SolarWinds Federal Webinar: Government Cyber Security Survey: What you told us
SolarWinds
 
ultimate-guide-to-getting-started-with-appsec-veracode
Sean Varga
 
Ultimate_Guide_to_getting_started_with_AppSec
Jessica Lavery Pozerski
 
Wearables and Internet of Things (IoT) - MWC15
Symantec
 
Pulse 2013 - How to run a successful BYOD initiative
Chris Pepin
 
#EPICFAIL: The biggest mistakes with mobile initiatives and how to avoid them
Chris Pepin
 
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Sarah Nirschl
 
CyberSecurity Update Slides
Jim Kaplan CIA CFE
 
Security architecture rajagiri talk march 2011
subramanian K
 
How will social media and other new technologies impact our industry the next...
Atle Skjekkeland
 
State of Security McAfee Study
Hiten Sethi
 
Securing the Digital Economy: Reinventing the Internet for Trust
Accenture Insurance
 
The advantages of Cloud Application Control
Web Werks Data Centers
 
Managing Cyber Risk: Are Companies Safeguarding Their Assets?
EMC
 
application-security-fallacies-and-realities-veracode
sciccone
 
INFOGRAPHIC: The Evolution of Data Privacy
Symantec
 
2014 Data Breach Industry Forecast
- Mark - Fullbright
 
Mobile Device Management Service: Yamana
Softweb Solutions
 
Best practices for mobile enterprise security and the importance of endpoint ...
Chris Pepin
 
Exploring Consumer Attitudes & Actions on Key Tech Policy Issues 2014
Edelman
 
SolarWinds Federal Webinar: Government Cyber Security Survey: What you told us
SolarWinds
 
Ad

Viewers also liked (16)

PDF
Komm 2.0
Tom Treber
 
PPT
Protection for Single PCs
iansadler
 
PPT
Audit PC content
iansadler
 
PDF
Boses Ng Kabataan Competition Paper
guest6b6bedc
 
PPT
大學生之於吃
songla
 
PPTX
Presentation1
Rasha.g
 
PDF
Free software
seravb
 
PDF
Präs baujournal
Tom Treber
 
PPTX
Regio alueyhteistyömalli 2012
Vesa Sarmia
 
PDF
Lenguajes programacionalternativos
seravb
 
PPT
Llibre ksandra
guest554a5d
 
PDF
Präs plank
Tom Treber
 
ODP
C:\Fakepath\Impress
Gaia Mariotti
 
PDF
Hk yhdessäolon taidot ja toimivan ryhmäytymisen kor2802
Vesa Sarmia
 
PPTX
19271931 dove-final-presentation-1
suraj333
 
PPTX
X ray diffraction
Praveen Kumar
 
Komm 2.0
Tom Treber
 
Protection for Single PCs
iansadler
 
Audit PC content
iansadler
 
Boses Ng Kabataan Competition Paper
guest6b6bedc
 
大學生之於吃
songla
 
Presentation1
Rasha.g
 
Free software
seravb
 
Präs baujournal
Tom Treber
 
Regio alueyhteistyömalli 2012
Vesa Sarmia
 
Lenguajes programacionalternativos
seravb
 
Llibre ksandra
guest554a5d
 
Präs plank
Tom Treber
 
C:\Fakepath\Impress
Gaia Mariotti
 
Hk yhdessäolon taidot ja toimivan ryhmäytymisen kor2802
Vesa Sarmia
 
19271931 dove-final-presentation-1
suraj333
 
X ray diffraction
Praveen Kumar
 
Ad

Similar to Va\\lue of e-safebusiness solutions (20)

PDF
CyberSecurityCompliance-Aug2016-V10 (002) final
RobertPike
 
PDF
IT Guide for Mobility: Making the case for Security leaders
Cisco Mobility
 
PDF
Cyber Risk Quantification | Safe Security
Rahul Tyagi
 
PDF
Power your businesswith risk informed decisions
Alireza Ghahrood
 
PDF
Selling Your Organization on Application Security
Veracode
 
PDF
Integrating-Cyber-Security-for-Increased-Effectiveness
Ayham Kochaji
 
PDF
IT Security at the Speed of Business: Security Provisioning with Symantec Dat...
Symantec
 
PDF
Responding to the Pandemic: Information Security and Technology Trends
Enterprise Management Associates
 
PDF
Why Do We Need To Secure Web Applications.pdf
Bytecode Security
 
PDF
Business-Driven Identity and Access Governance: Why This New Approach Matters
EMC
 
PDF
Top 6 Web Application Security Best Practices.pdf
SolviosTechnology
 
PDF
ICT eGuide: Switching foundation technology for better cyber security
Niamh Hughes
 
PDF
Risk & Compliance Outlook 2011
Hiten Sethi
 
PPTX
HUMAN FACTOR AND IT/OT CORRELATION
Andrea Vallavanti
 
PDF
S sdlc datasheet q1-2015 v fnl
Sally Chan
 
PDF
Clearswift f5 information_visibility_reducing_business_risk_whitepaper
Marco Essomba
 
PDF
Business Innovation and ICT Strategies Sriram Birudavolu
berylaivaohq
 
PDF
Level Up to a Seamless End-User Experience
VMware
 
PDF
A security requirement quality
ijseajournal
 
PDF
Cyber threat forecast 2018..
Bolaji James Bankole CCSS,CEH,MCSA,MCSE,MCP,CCNA,
 
CyberSecurityCompliance-Aug2016-V10 (002) final
RobertPike
 
IT Guide for Mobility: Making the case for Security leaders
Cisco Mobility
 
Cyber Risk Quantification | Safe Security
Rahul Tyagi
 
Power your businesswith risk informed decisions
Alireza Ghahrood
 
Selling Your Organization on Application Security
Veracode
 
Integrating-Cyber-Security-for-Increased-Effectiveness
Ayham Kochaji
 
IT Security at the Speed of Business: Security Provisioning with Symantec Dat...
Symantec
 
Responding to the Pandemic: Information Security and Technology Trends
Enterprise Management Associates
 
Why Do We Need To Secure Web Applications.pdf
Bytecode Security
 
Business-Driven Identity and Access Governance: Why This New Approach Matters
EMC
 
Top 6 Web Application Security Best Practices.pdf
SolviosTechnology
 
ICT eGuide: Switching foundation technology for better cyber security
Niamh Hughes
 
Risk & Compliance Outlook 2011
Hiten Sethi
 
HUMAN FACTOR AND IT/OT CORRELATION
Andrea Vallavanti
 
S sdlc datasheet q1-2015 v fnl
Sally Chan
 
Clearswift f5 information_visibility_reducing_business_risk_whitepaper
Marco Essomba
 
Business Innovation and ICT Strategies Sriram Birudavolu
berylaivaohq
 
Level Up to a Seamless End-User Experience
VMware
 
A security requirement quality
ijseajournal
 
Cyber threat forecast 2018..
Bolaji James Bankole CCSS,CEH,MCSA,MCSE,MCP,CCNA,
 

Va\\lue of e-safebusiness solutions

  • 1. Acceptable Use PoliciesBalancing Productivity and Compliance“Employees expect personal internet access at work. This raises security, productivity, HR, compliance, bandwidth and legal issues which cross multiple departmental boundaries”“Organizationsneed to create, implement and monitor an Acceptable Use Policy (AUP) which governs the use of company infrastructure and which is backed up by both effective tools, regular monitoring and comprehensive training”“This presentation discusses some of the background issues that affect the management of a balanced AUP which employees understand and works with Risk Based Regulation”Knowledgeframee-safe business
  • 2. Acceptable Use PoliciesBalancing Productivity and ComplianceAs society becomes increasingly connected so professional service firms have to adapt to, and take advantage of, the business benefits of online communication, connectivity and collaboration.EmailVOIPProfessionalServices FirmMobile PhoneWeb ConferencingInstant MessagingSocial Networking
  • 3. Acceptable Use PoliciesBalancing Productivity and ComplianceClients are more demandingThis change is accelerating, its scope is broadening and its impact is global.Regulatory pressures are escalatingCompetition is fierce and recruitment is increasingly difficult
  • 4. Society is hooked on all-pervasive, always-on connectivity. The boundaries between work, social and leisure time are becoming nonexistent.InternetMobile PhoneWeb ConferencingVOIPSocial NetworkingI.M.PDAsE-mail
  • 5. The OrganizationProductivityFor most of us, not having online access would severely impact our productivity.For a growing percentage, full time, instant, multi-device connectivity is mission critical.ConnectednessConnectedness provides a huge competitive advantage particularly if governed by an ITC Acceptable Use Policy which is integrated into its business vision and strategy.
  • 6. The OrganizationDemographicsAt the same time workplace demographics are changingExisting staff members are being replaced by a new generation of knowledge workersConnectednessThey have never known a world without the internet, Google, Facebook, YouTube, text messaging and camera phones, they are naturally collaborative and connected.
  • 7. 60%
  • 8. The OrganizationDemographicsIn order to compete for this valuable talent base every organization has to offer an always on, connected, collaborative environment At the same time workplace demographics are changingConnectednessIt has to support the way in which the “everyone, everything, everywhere, connected” generation, live and work.
  • 9. VOIPWeb ConferencingText MessagingIn today's environment workers use social networking sites and online communities for business communications60%60% use social networking sitesat work5%10%25%Whilst no one doubts that connectivity, communication and collaboration tools dramatically increase knowledge worker productivity there is the realisation that these same tools increase business risks for the employer.
  • 10. These changes will have a profound effect not only will you have to understand and manage these new connectivity tools but also:Manage the behaviour of users
  • 11. These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to:Manage the behaviour of usersbalance security and network reliability
  • 12. These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to:Manage the behaviour of usersMaintain employee productivity and safetybalance security and network reliability
  • 13. These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to:Manage the behaviour of usersEnsure compliancewith regulatory rules and guidelines.Maintain employee productivity and safetybalance security and network reliability
  • 14. The risks fall into two main categories: Reputational Damagefor example, the loss of client data, IP contravention,breach of data protection law, negative tweets & blogsHR IssuesIn particular the employees’ right to work within a secure, regulated and protected online environmenttogether with developing policies and strategies which help connected employees maintain a work/life balance.
  • 15. “Organizationsneed to develop a strategy, driven by the business needs of the practice which balances increased regulation, enhanced security and improved productivity with the social and work needs of permanently connected employees.”
  • 16. Both Lexcel V4 and Risk Based Regulation from the SRA impose additional monitoring and reporting burdens on law firms.LexcelV4SRA
  • 17. Both Lexcel V4 and Risk Based Regulation from the SRA impose additional monitoring and reporting burdens on law firms.LexcelV4RegulatoryBurdenSRA
  • 18. Both internal governance and exterior regulation impose additional monitoring and reporting burdens .InternalRegulatoryCostRegulatoryBurdenRegulation in particular appears to be moving away from the “yearly snapshot” approach to a continuous monitoring model with a form of credit scoring applied in real time.External
  • 19. This impacts costs and possibly even ability to attract clients and recruit talent.There is, therefore, a direct link between a clearly written Acceptable Use Policy, continuous compliance monitoring and profit.
  • 20. Being compliant is a business imperative. However monitoring and managing ongoing compliance together with reporting to regulators has the potential to take up valuable management time.e-safe business reconciles Acceptable Use with Lexcel V4 and Risk Based Regulation to provide a largely automated monitoring, managing and reporting environment which addresses the issues facing growing law firms adapting to the new regulatory environment.
  • 27. Equality & Diversity
  • 28. Risk Based Regulatione-safe business reconciles the Acceptable Use Policy with Risk Based Regulation to provide a largely automated monitoring, managing and reporting environment which addresses the issues faced in addressing the ever expanding regulatory environment.
  • 31. Regulatory RisksLexcel V44A.4 e-mail policy4A-5 website use4A.6 internet useAUPE-safeMonitoring&ReportingThere is overlap between Lexcel, LSC and SRA rules and guidelines.e-safe business from eSafe Systems
  • 35. Equality & Diversity
  • 36. Risk Based RegulationLexcel V44A.4 e-mail policy4A-5 website use4A.6 internet useAUPE-safeMonitoring&ReportingSRARule 5.01(1)gRule 5.01(1)hRule 5.01(1)iThere is overlap between Lexcel, LSC and SRA rules and guidelines.The Acceptable Use Policy and e-safe business, work together to manage this relationship.e-safe business from eSafe Systems
  • 40. Equality & Diversity
  • 41. Risk Based RegulationLexcel V44A.4 e-mail policy4A-5 website use4A.6 internet useAUPE-safeMonitoring&ReportingLSCRule 3Rule 8Rule 9SRARule 5.01(1)gRule 5.01(1)hRule 5.01(1)i03.LSCClient Confidentiality
  • 44. E-safe business improves productivity, reduces risk and improves security by modifying user behaviour.
  • 45. E-safe business improves productivity, reduces risk and improves security by modifying user behaviour.User Monitoring – The User Monitoring Module monitors all information displayed on the workstation screen, within a Windows environment including:Applications
  • 46. Chat
  • 48. Email
  • 50. The Operating SystemE-safe business improves productivity, reduces risk and improves security by modifying user behaviour.Activity is compared with built in “Threat Libraries” which look for:Cyber bullying,
  • 54. Race,
  • 56. Sex,
  • 59. Bypassing firewalls & proxy avoidance,
  • 61. IP theft & copyright infringement.E-safe business improves productivity, reduces risk and improves security by modifying user behaviour.Image Control – Image Control intercepts images, before they are displayed on-screen and determines the images acceptability for display. This provides the greatest protection from accidental or deliberate access to inappropriate images.Image control can also block images introduced onto the network via USB or email.
  • 62. E-safe business improves productivity, reduces risk and improves security by modifying user behaviour.USB Device Management – USB device management controls the use of: memory sticks,
  • 65. mobile phones whenever an attempt is made to connect them to the network helping to prevent data theft and the introduction of viruses, worms and Trojans.
  • 66. e-safe business improves productivity, reduces risk and improves security by modifying user behaviour.Training – Deploying e-safe is not, in itself, sufficient to provide the level of control or changes in behaviour necessary to ensure your AUP is adhered to and ongoing regulatory compliance maintained and improved.It’s important that everyone in the organisation understands the reasons why e-safe business has been deployed and how non compliance with rules impacts reputation, costs and profit.e-safe provides comprehensive training showing how to introduce e-safe business and configure it to provide the level of protection you need.
  • 67. e-safe business can be installed onto your networkOr provided as a managed service from our UK based servers with fully qualified and accredited support