| Do you know all possible ways to take information out | | | | employee, stolen by some spyware software, copies |
| of company so that no one would know about this? | | | | to the external drive, etc. Think about all possible ways |
| I'm sure, even there are some certain security rules | | | | and think about risks applied. Try to minimize the risk |
| there are still some possible ways for information | | | | for the most important data. |
| leakage. Let's think about how can we control this | | | | Let's list some possible security issues and the ways |
| process. | | | | how we can get rid of them. |
| First, it's necessary to understand that there no any | | | | Keyloggers and other spyware software. Keylogger is |
| absolute means about security. Even if USB port it | | | | a program that works in background, records all |
| blocked, it's still possible to write some data to USB, if | | | | keystrokes and send out information to third-party. The |
| there is system that controls outgoing mails, then it's still | | | | good idea is to start with firewall, which will allow |
| possible to use some trick that intruder might use to | | | | access to the internet only for a certain programs. |
| send out important data out of the company. | | | | Intruder insider your company. Statistics shows that |
| So how to manage information security policies to | | | | there are some in most companies. The bad news is |
| prevent possible data leakages? Let's list all possible | | | | that these people might produce more damage that all |
| ways to prevent leakage. There are two general | | | | other attackers. Make sure you know about what |
| categories - active and proactive security. These | | | | employee do, what he or she keeps on his hard disk |
| terms are sometime hard to understand in real word, | | | | and all you do comply with privacy policy of your |
| so let's discuss another approach. There are means | | | | company. |
| that will help to prevent the fact of information leakage, | | | | Hardware that might be dangerous. There are |
| and there are means that will help to find out, if | | | | software that allows to lock USB ports, there are |
| information was leaked. Both methods should be | | | | software that allows to block access to any other |
| considered when building information security at your | | | | writeable media, consider installing these tools on |
| company. | | | | computers and user accounts which doesn't need to |
| How to prevent information leakage. First, it's | | | | use this functions during their work. |
| necessary to apply a security policy which will | | | | Finally, the key principle about fighting information |
| guaranty the access to the certain data only for | | | | leakage is to be proactive. You don't need to wait until |
| trusted persons, in this way you will always know who | | | | some information will be stolen, being a little paranoid |
| has access to the data, so it is easier to find possible | | | | will help to save your business. It's easy to install and |
| intruder and to control your employees. | | | | integrate into the security policy some audit measures, |
| Second, consider all possible ways for information to | | | | that will regularly check your company for possible |
| be stolen, such as sent out by email, copies by some | | | | security holes, it's simple, but it's work. |