The information security industry is built on a model of protecting internal network assets and resources from external threats. IT and security administrators are heavily invested in the concept of the network perimeter and an us-vs-them approach. The problem is that most of the threats actually come from the ‘us’ rather than from the ‘them’ in that equation.
I was recently a guest on the IMI-TechTalk radio show where I talked with host Tom D’Auria about the Enemy Within: The Insider Security Threat. I mentioned some recent data breaches like the situation unfolding with TMobile in the United Kingdom where employees sold customer data to competing mobile providers.
Its not always about corporate espionage or sabotage though. The insider threat exists for a variety of reasons stemming from poorly defined policies and innocent mistakes on the part of well-meaning employees as well.
Products like Zecurion’s ZGate software give IT administrators the tools to monitor and control access and prevent data breaches–both intentional and accidental. Zecurion recently announced expansion of its partner program into Asia, and will be discussing both its products and its partner program next week at ChannelWeb’s virtual conference- SMBs: Ready for the Rebound.
Having clearly defined policies and the tools to monitor activity and enforce them is critical for protecting data. When it comes to defending against data compromise through malware attacks, bots, spyware, and phishing scams, Windows 7 is significantly more secure.
According to the most recent Microsoft Security Intelligence Report, Windows XP is 75 percent more likely to be compromised than Windows Vista. The data didn’t yet include Windows 7, but Windows 7 contains a number of enhancements that make it even more secure than Windows Vista.