Insider Threat

Identity monitoring and core security
Jul. 14, 2008
How does identity monitoring fit into an overall core security program. Is it necessary?

Preventing data breaches not a technology issue
Jun. 23, 2008
When security people see headlines about data losses at TJ Maxx, ChoicePoint, DuPont, and the Department of Veterans Affairs, they quickly assume that preventing such loss is a technology problem. It clearly is not. It ...

Log management as a tool against insider threats
May. 27, 2008
How can I leverage the log-management product I've bought for compliance to protect the network against insider threats as well? If I have a log management solution in place, will that be sufficient to protect my ...

The case of the tampered USBs
May. 12, 2008
They put 4Gb USB sticks (properly marked and in manufacturers' packaging) all over the parking lot. Employees picked up the sticks and some went straight to their computers and inserted them to see if they worked. ...

When the inside threat is from outsiders
Apr. 21, 2008
With the economy being so shaky right now, my company has put a freeze on hiring and we are currently using temporary contractors to fill certain positions. It seems that outsiders are the new insiders. Any tips on best ...

The correlation between identity monitoring and data loss prevention
Apr. 07, 2008
I've been looking into the correlation between identity monitoring and data loss prevention technologies. Can you clarify if these two go hand-in-hand and if so, the best ways to use them to get maximum efficiency?

Data leakage prevention on a budget
Mar. 17, 2008
Now that larger companies are entering the DLP space, my company wants me to look into the technology. I've noticed it's quite pricey, especially with service added. Can DLP be done on a budget?

What data is most important to protect?
Feb. 25, 2008
$metaData.get(

Avoiding data-loss prevention pitfalls
Feb. 04, 2008
What are the barriers to DLP? I've heard it can take a lot of time and the costs add up. Is there a way to get around this?

Keeping user data private
Jan. 21, 2008
I'm an IT administrator at a community college and am gearing up for the New Year. Many students have their social security numbers on file and also use their credit cards to pay for classes online. What approaches ...

Beyond the firewall
Nov. 19, 2007
This year, with all of its data breaches, has certainly proved that network security is much more complex than at past times, when firewalls were viewed as premium defense collateral. What are some methods/policies I ...

Making sense of data loss prevention
Oct. 29, 2007
With all the recent news about acquisitions in the DLP space, I'm unsure if now is the time to select a solution or if I should wait. How can I tell the right time to get into DLP?

Tips for creating a security policy
Oct. 08, 2007
My company is revamping its network security plan. What tools should I use to develop up-to-date policies, and are there any tools that make this easier?

The struggle with data loss prevention
Sep. 24, 2007
Being in the data loss prevention (DLP) market while it has evolved has let me watch as requirements have changed over time.

How to know where the intellectual property is - and then protect it
Aug. 27, 2007
I have the thankless job of protecting company secrets from breaches. My efforts are increasingly the spotlight with every new article on the TJX breach. How can large companies, like mine, know where their intellectual ...

What you can learn from J.K. Rowling about intellectual property
Jul. 30, 2007
J.K. Rowling did it with "Harry Potter and the Deathly Hallows." Why can't you? No, I don't mean you should be able to write a blockbuster series of books - but that you should protect your critical intellectual ...

Incorporating data-breach issues in employee training
Jul. 09, 2007
I manage an employee training program and wondered how often we should have refresher courses on company policy about data protection and confidential company information. What are your recommendations?

Securing credit-card and other personal data
Jun. 11, 2007
My company's trying to comply with the Payment Card Industry (PCI) Data Security Standard (DSS). This means we can't store any Track II credit card data at all. It also means we have to encrypt the primary account data ...

Inventorying your intellectual property
May. 28, 2007
I have been tasked with inventorying my company's intellectual property. Some things are obvious, such as source code, business plans, and customer lists. What else would fall into this category, in your opinion? How ...

Data leakage prevention: The dangers of port dependence
May. 07, 2007
My organization has a mandate to deploy Data Leakage Prevention next quarter. How do I gauge the completeness of a solution with respect to coverage of all network traffic?

Protecting your network from USB
Apr. 16, 2007
My company provides employees with laptops and handheld devices to promote an efficient work environment. I've also seen employees listening to iPods or carrying keychain USB memory sticks around the office. With so ...

When information-protection policies are broken
Apr. 02, 2007
What are some information protection policies that are commonly broken in enterprises? Are these the main policies that I should focus on when training employees on policies regarding company data?

Insider threat being blown out of proportion?
Mar. 19, 2007
I've read the recent news about intellectual property breaches at large companies and wondered if the need to protect this data is being blown out of proportion or if my company should be concerned about who has access ...

When disgruntled employees get clever
Mar. 05, 2007
I've heard of disgruntled employees taking company secrets, breaking them into several documents, and e-mailing them to competitors. Is it possible to capture data if it's leaving the network in multiple formats across ...

Getting started with content monitoring
Feb. 05, 2007
When I think about content monitoring, it seems like a daunting task, because there is so much information going in and out of my network. What's the best way to get started?

  1   2