53% of IT managers are largely unaware of employee access rights to systems!
|
This causes a proliferation of zombie accounts – accounts that remain active after employees have left the company.
However, these same administrators say they have a high level of confidence that zombie accounts cannot trigger a malicious attack or perpetrate a data leak, despite high-profile evidence to the contrary. This is according to a global survey of 236 business managers from large enterprises.
|
|
Other key survey results include:
- Nearly one in three companies (30%) still manually provision user accounts, increasing the likelihood of human error or delays when de-provisioning departing employees – and ultimately the risk of data theft via zombie accounts.
- Almost half (48%) of organisations currently take more than one business day to alert IT departments of employee terminations.
- Close to one quarter (23%) of companies surveyed also take another day or more to switch off employee access to their systems, creating a substantial window of opportunity for malicious former employees.
- Almost 1 in 10 companies (9%) said they could never be completely certain that terminated employees no longer have access to IT systems.
- More than one third (34%) of business managers reported that it can take up to a week or longer to be completely certain that terminated employees do not have access to systems.
Security risks are now higher than ever!
With unemployment heading skywards as companies are forced to make redundancies to survive, there are now hundreds of thousands of ex-employees who may be feeling disgruntled towards their former employers. This poses a very real threat to organisations as these ex-employees may still be able to access sensitive personal data which, in the wrong hands, could result in a massive data breach.
The Insider Threat: A Pocket Guide intends to shed light on the key security issues facing organisations from insiders to get them up to speed quickly.
 |
Data breaches: Trends, costs and best practices
gives you the latest information and worldwide trends in corporate data breaches - those that affect personally identifiable information and contravene laws such as the UK Data Protection Act, HIPAA and so on - and identifies best practice for avoiding business, regulatory and brand damage.
|
Timely and authoritative, this report is aimed at executives, information security managers, risk managers, auditors, compliance managers, stakeholders and data controllers worldwide. It
- assesses the reality in today's data breach landscape,
- recognises the real, damaging trends that affect businesses, stakeholders and individuals and
- identifies current and emerging best practice in controlling the risks - and costs - arising from inadequate security in relation to personal data.
This report, its findings and recommendations, will help organisations around the world strike the correct balance between data availability and data security.
Order this essential best practice report today for immediate download!
|
|
Join us on Facebook!
Follow us on Twitter!
IT Governance specialises in governance, risk management, compliance and information security.