Where possible, you should encrypt all data on any mobile company devices (laptops, smartphones, removable drives, etc.) and any other corporate systems that leave your facilities. This is where things like data at rest protection (e.g.: whole-disk encryption) can help protect you. Unfortunately, due to things like telework requirements, this is not always possible to maintain. Of course, generally speaking you don't want your corporate data being kept anywhere outside of your company's control. ![]() Unless it is something that is approved for a business purpose (and the risk has been evaluated and accepted by your IT Security officer), Dropbox is not somewhere you want your corporate data being kept. ![]() Use network monitoring to detect unauthorized uses of the system. Use things like least privilege and application/firewall restrictions to keep users from installing/using Dropbox on their work computers where possible. Take away that tool without addressing the underlying problem of users not understanding data security and not having access when they think they need to and they WILL find more inventive and less secure ways to do it.ĭropbox isn't the problem, but I wouldn't suggest letting it go unaddressed either. Using Dropbox to transfer files is just a symptom of the problem and a relatively (compared to other approaches) benign one. I also have to agree that blocking Dropbox outright won't fix the problem and will likely make it worse. If it is because they need to be able to do work from home on occasion, then perhaps it would be worth configuring a VPN or other remote access system to allow them to securely access data when at home but keep control of the data on company systems. Have a discussion with them and figure out why they feel they need to have the data at home. If people are transferring data to sync with home when you don't want them to be syncing data with home, they need to be educated that they should not be syncing data with home. I'd also chime in that user education is key.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |