Security Magazine has written an article proposing that utilizing employee surveillance capabilities is not the most effective way to handle the risk of insider threats to an organization, primarily due to the use of technology exacerbating what could already be a negative employee relationship. Instead, the article suggests taking the following actions to build a security-aware culture that’s capable of identifying issues and comfortable enough to report them to the security team: establishing an acceptable use policy for company data, building a culture of empathy and trust, educating employees about security on a regular basis, using security data to establish what network actions are risk versus noise, and updating the organization’s data protection technology. Read more at Security Magazine.
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!