Dateline: August 4, 2017
Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend.
Most cybersecurity breaches are aided by insiders…either intentionally or unintentionally. But a recent study showed that ex-employees may also be a threat, but this one is more easily managed with the right processes in place. According to Bob Violino, a free-lance writer focused on cybersecurity and other information technology issues, a study was done by identity management company OneLogin showed that 50% of companies continue to give ex-employees access to company systems after they leave. The Information Management article, Many Firms Turn A Blind Eye To Top Data Threat: Ex-Employees, reported,
The research found that nearly half (48 percent) of respondents are aware of former employees who still have access to corporate applications, with 50 percent saying ex-employee’s accounts remain active once they have left the company for longer than a day. One quarter (25 percent) of respondents take more than a week to deprovision a former employee and the same percentage said they don’t know how long accounts remain active once the employee has left the company.
“The bottom-line is that companies aren’t following very basic but essential security measures around employee provisioning and deprovisioning,” said Alvaro Hoyos, chief information security officer at OneLogin. “This should be a cause for concern among business leaders, especially considering how many data breaches are caused by ex-employees.”
What is your process for removing access for ex-employees? How can it be tightened up to increase security?
That’s a WRAP! Have a great weekend!
Speak Your Mind