Looking for creative ways to improve security compliance

zephyr50 weeks ago

I'm looking for creative and effective ways to improve security compliance at my company. I've done all of the usual things - posters, email reminders, etc. to end users What have you done that was effective? I'm hoping to be inspired!!!

Tags: security

Topic: Networking

Answer this Question

Login or register to post answers
Permalink

Answers

1 total

dblacharski 50 weeks ago

I may sound cynical, but I think the best approach is to assume a certain level of laziness on the part of end users. If you assume that people will always take the path of least resistance, you will know from the beginning that there is bound to be use of default passwords, sending sensitive files via regular email, use of unauthorized apps, and other security faux-pas. Starting with that assumption, you have to then assume that "soft" enforcement such as email reminders aren't going to work, and you must instead then look towards implementing technological enforcement. For example, if your policy calls for people to use a certain level of password complexity and to change passwords once a month, lock them out if they don't do so. If your security policy prohibits use of IM on company computers, then block IM at the firewall level.

Share this answer
Permalink

Answer this Question

Ask a question

FCC ruling on 800MHz band a boon for Sprint

The U.S. Federal Communications Commission approved a rule change for part of the 800MHz band at a meeting on Thursday, opening the door for Sprint Nextel to use the band for its 4G LTE network.

Quickbooks Online outage leaves some customers in sour mood

Intuit's Quickbooks Online service suffered an outage this week that left "a small subset" of customers unable to access their data, but the company says the problems with the on-demand accounting software have now been fixed.

Coding contest shows how big data can improve health care

A recent coding competition in the Boston area brought together IT professionals, medical workers and others with an interest in health IT to show how data analytics can improve health care.

Minnesota state government executive branch picks Microsoft to improve e-mail, collaboration

The Executive Branch of the Minnesota state government had its 40,000 end users on a mishmash of e-mail systems when in 2008 its IT group, the Office of Enterprise Technology (OET), decided to tackle the problem.

Unthethered jailbreak for iOS 5.1.1 available for download

Absinthe 2.0, the jailbreak for iOS 5.1.1, is ready and available for download, the Jailbreak Dream Team announced at the Hack in the Box conference in Amsterdam on Friday.

Sales of unused IPv4 addresses gathering steam

A growing number of U.S. carriers and enterprises are hedging their bets on IPv6 by purchasing blocks of unused IPv4 addresses through official channels or behind-the-scenes dealmaking.

Are CEOs getting the social media thing?

IBM says a study it did of some 1,700 Chief Executive Officers worldwide found that many indeed - or should be -- grasping social media as a key enabler of collaboration and innovation.

Sony brings streaming music service to the iPhone

Sony on Friday released an iPhone app to access its streaming Music Unlimited service, part of its efforts to expand its online platforms to devices from rival manufacturers.

China's Sina Weibo targeting Japanese advertisers

One of China's top Twitter-like sites, Sina Weibo, is working to attract Japanese companies to advertise on its platform by helping the firms open and use accounts on the microblogging service.

Lawmakers call on DOJ to reopen investigation into Google Wi-Fi spying

Two U.S. lawmakers have called on the U.S. Department of Justice to reopen its investigation into Google's snooping on Wi-Fi networks in 2010 after recent questions about the company's level of cooperation with federal inquiries.

White Papers & Webcasts

White Paper

IDC Vendor Spotlight

Your company needs backup and recovery that supports a tiered-recovery model. This IDC Vendor Spotlight examines the modern forces driving the advancements in today's data protection technologies, and a complete backup and recovery solution that works across physical, virtual and cloud environments.

White Paper

vRanger Helps Cut Replication Time by Almost 70%

There's a reason why more than 38,000 customers trust vRanger to protect their critical virtual data! In this Quest Software case study, see how vRanger helped Cornerstone Bancshares, Inc. cut replication time from days to minutes - and how this translated to real time and money savings.

White Paper

ESG: Product Brief: Quest vRanger 5.3 brings enterprise-class VMware protection to SMB's

Free paper: how virtualization impacts SMBs, and strategies for enterprise-class VMware protection

White Paper

Forrester Report: The ROI of Cloud Apps

Cloud apps continue to gain momentum in the enterprise as buyers are attracted to fast deployment speeds, low upfront costs, and ongoing flexibility to scale up or down as needs change. This report analyzes the five-year ROI for cloud apps across CRM, ERP, collaboration, and IT service management.

White Paper

The Cloud: Reinventing Enterprise Collaboration

Collaboration and content sharing are not, of course, new concepts. But cloud computing has changed the nature of collaboration, content sharing, document storage and project management to enable more efficient, faster-acting and cost-effective enterprises. According to a new study by IDG Research, the vast majority of knowledge workers (86%) placed a very high level of importance on collaborating with internal coworkers and external stakeholders, and having access to the most up-to-date corporate information. Read how organizations are realizing massive productivity gains by transitioning their content management solutions to cloud-based models.

See more White Papers | Webcasts