6 must-haves to stop users from causing data leaks

Whether they’re doing so maliciously or accidentally, there’s a chance users leaving your company are walking out with some of your corporate data. 

Insider incidents are still fairly common despite the attention many companies pay to blocking external cyberattacks.

In fact, a study by Biscom found that one in four users leaving their companies left with some data.

Plugging data leaks

Bill Ho, Biscom’s CEO, shared several safeguards businesses’ insider threat programs should have to reduce the chance of insider-related incidents:

  • Clear policies about what counts as corporate data. Most respondents noted their companies didn’t have any policies relating to taking company info, or what data might be considered protected.
  • Employee contracts and orientations that cover data handling and ownership. Talking about data handling policies and the consequences for breaking them early and often with users. Plus, having new hires sign off on these policies can help companies take legal actions against any malicious insiders later on.
  • Processes to eliminate old accounts. This prevents former users from using old logins for accounts with data they shouldn’t have access to.
  • Processes for users to report insider threat concerns. Often users are the ones who will know when someone is behaving oddly, but may not feel like they have a safe way to report the behavior to IT or management.
  • Limited privileged access accounts. Most experts recommend only giving users as much access to data as they need to perform essential job tasks.
  • Breach response plan. Companies also need plans for how to react if insiders still slip through with data.

Make Smarter Tech Decisions

Get the latest IT news, trends, and insights - delivered weekly.

Privacy Policy