- با ما در ارتباط باشید
- 021-88060830
- 021-88060831
- info@ashenatek.com
ریسک هایی که از سوی کارمندان سابق متوجه شماست
Did you know that a third of ex-employees access company data from their previous employer? This is a worrying stat for UK businesses as GDPR regulations loom, coming into play in less than a year. 24% of UK businesses have suffered data breaches caused by former employees.
Under GDPR (which comes into effect in May 2018), companies failing to adequately protect customer data can be fined up to 4% of their annual global revenue.
With this in mind, are you being thorough enough when employees leave your business to ensure their access to sensitive data is completely deprovisioned? Are you using the right technology solutions to ensure that current employees are not holding business data on their own devices, which will remain after their employment with you ends?
Employee Offboarding – More than just a Tick-Box Exercise
What happens when an employee leaves your business? Is it someone’s job to manually go through your IT systems and de-provision that employee’s access to the various systems you use?
If the answer to the above is yes, then you’re like 92% of other businesses who don’t automate this process. Unfortunately, this makes the process of removing ex-employee access to business data open to human error and forgetfulness.
Ensuring employee access to systems and data is deprovisioned 100% of the time, in a timely manner, is vital to protect your business. If data held by your company gets into the public domain, you could be fined and forced to tell the public that you’ve had a data breach.
There are three ways that employees can put data at risk
Innocent Actions:
Are your employees syncing work related data with their own personal devices, at home or mobile, using non-enterprise solutions like Dropbox or Google Drive? Do they take data home on USB devices? Employees may not know this is a risk to data security, and they could be doing so purely in order to work remotely. You can ensure this doesn’t turn into a problem by using the correct encryption solutions for data, restricting employee abilties to install their own file sync solutions (e.g. DropBox) at work, and using a business grade file sync system that support remote wiping of data on mobile devices.