A Key Strategy for Preventing Insider Data Theft
By Carlos Soto - June 19, 2019
One of the biggest IT risks employers face is unauthorized people accessing their data – and those people may be familiar faces. Your current employees may be looking at databases or accounts that should be off-limits to them, or ex-employees who never had their login credentials completely disabled may be snooping on your data.
It’s more common than you might think. One survey by HfS Research and Accenture found that 69 percent of companies had experienced insider data theft over the prior 12 months, compared to 57 percent having experienced data theft from external sources.
So, how can you ensure that only the right people can access your systems and key accounts? A smart solution is active directory management.
Active directory management ensures that only validated users and devices can be authenticated to access your company’s various systems. It establishes and enforces security policies, such as the use of passwords to protect certain business accounts, only allowing access to pre-approved devices and users.
Here’s a basic example of how it works: When someone logs into a computer that is part of your network, the system determines whether their login credentials are those of a system administrator, an employee, or a guest. Preset rules and restrictions are then applied, granting that person with the predetermined level of access.
It essentially lets you decide how much access each end user should have and prevents individuals (whether employees or visitors) from viewing any information they shouldn’t. If you segment your Wi-Fi network to prevent guests and others from spying on your internal business activity – as you should – active directory management lets you designate which devices are allowed on your employee-only Wi-Fi, and which ones should be relegated to the guest network.
Included in every CompuCom Managed IT as a Service package, active directory management helps optimize user administration by offering your business:
- Convenience. You can quickly provide and remove access to various business systems and accounts. If an employee leaves, you can easily and efficiently disable their access.
- Security. It gives you significant control over access to your business systems and data, greatly reducing the odds that unauthorized people will be able to spy on or steal information.
- Compliance. It can help you comply with consumer privacy rules and data protection regulations in your industry, blocking off data from employees and others who should not have access. If you’re audited, using active directory management could help show that you have taken concrete steps to protect your data.
Why Small and Medium-Sized Businesses Need It
Small to medium-sized companies are particularly vulnerable to insider data theft because they often don’t have the internal controls and cybersecurity protocols of large companies. This makes active directory management all the more valuable.
Contact us at 1-800-300-0983 to learn more about our managed IT services, and download our new whitepaper to discover the top IT risks threatening small to medium-sized businesses like yours.