|
|
BS 7799/ISO 17799
USB pen drive policy Jun 06 2006 03:30AM Kosala Atapattu (kosalaa carcumb com) (4 replies) RE: USB pen drive policy Jun 06 2006 04:27AM Wilson Wong (wilson wong netrust net) (1 replies) Re: USB pen drive policy Jun 06 2006 05:13AM Paul W Brager Jr CISSP CISM (paul-brager houston rr com) (2 replies) RE: USB pen drive policy Jun 06 2006 05:32AM Jose Varghese (jose varghese paladion net) (1 replies) |
|
Privacy Statement |
Your second point, Information Leakage.. Only thing you really can do
is get some Awareness about the risk and impact on business when
information leaks AND what consequenses this could have for them
personally. Not that you want to frighten them, but you want to
protect them also.
Is my humble idea to an answer.
Maurice Smit.
On Jun 6, 2006, at 7:53 AM, Kosala Atapattu wrote:
> Jose Varghese wrote:
>> Building security awareness is the key.
>>
>> Technology keeps changing - mobile phones with disk drives. These
>> technologies are quite handy. I feel it is counterproductive to
>> try and ban
>> their usage. Educate the users on the risks and provide them the
>> tools to
>> use them securely!
>>
> I agree on the point that these technologies should not be banned
> from the organization, I'm looking at ways to restrict them.
>
> User induction is a good approach, yet we should not forget that
> typical users are ignorant as ever. They always try to stick in to
> the convenient end of the line, where we expect them to stick to
> the secure end.
>
> Up to now I realized following things from the discussion,
>
> 1. People Carrying Data in removable media....which information
> might be at a risk if they lose the media.
> - Solution would be Encryption
> 2. People taking restricted data out of office premises.
> Information Leakage.
> - Any Solutions for this...?
>
> anything else?
>
> Kosala Atapattu
[ reply ]