Looking for creative ways to improve security compliance

zephyr

I'm looking for creative and effective ways to improve security compliance at my company. I've done all of the usual things - posters, email reminders, etc. to end users What have you done that was effective? I'm hoping to be inspired!!!

Tags: security
Topic: Networking
Answer this Question

Answers

1 total
dblacharski
Vote Up (31)

I may sound cynical, but I think the best approach is to assume a certain level of laziness on the part of end users. If you assume that people will always take the path of least resistance, you will know from the beginning that there is bound to be use of default passwords, sending sensitive files via regular email, use of unauthorized apps, and other security faux-pas. Starting with that assumption, you have to then assume that "soft" enforcement such as email reminders aren't going to work, and you must instead then look towards implementing technological enforcement. For example, if your policy calls for people to use a certain level of password complexity and to change passwords once a month, lock them out if they don't do so. If your security policy prohibits use of IM on company computers, then block IM at the firewall level.

Ask a question

Join Now or Sign In to ask a question.
Aiming to make cloud computing and DevOps training more accessible to women, Intel is sponsoring the IC3 Cloud Scholars program.
A hybrid cloud delivers IT efficiencies, and proprietary business intelligence tools, to help hundreds of hotel owners boost profitability.
Oracle needs to recognize that the consumerization of IT is already here.
Cisco on Monday said it is expanding on its Intercloud multi-cloud service provider initiative with another $1 billion investment, designed to lead to more products, data centers and partners.
Rackspace is in the process of rebooting a substantial portion of its cloud servers before Oct. 1.
Though Oracle co-CEO Mark Hurd's title may have changed recently, his job running the company's sales and support operations really hasn't. But he does have a whole lot more to sell and support these days, and it's all in the cloud.
National Security Agency is building its private cloud on commodity hardware, opens source software
Add big data and analytics to the businesses Oracle wants to dominate in the cloud.
Oracle is giving its entry into the platform-as-a-service market (PaaS) an injection of new services in hopes of differentiating it from the likes of Windows Azure and Salesforce.com's Salesforce1.
Wi-Fi networks can be very tricky to properly design and configure, especially in the small, crowded 2.4 GHz frequency band. In addition to interference from neighboring wireless networks, capacity issues arise when there are a high number of users on the network or a high density in a certain area.
Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

randomness