Date post: | 23-Aug-2014 |
Category: |
Recruiting & HR |
Upload: | skope-business-ventures |
View: | 328 times |
Download: | 10 times |
Data Security And Privacy For Small and Medium-sized Enterprises
Varun Kumar Associate Manager – Talent Acquisition
Project by -
Discover the Difference
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
“We already have zero privacy.
Get over it.”
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Introduction
Most companies are so focused on their day-to-day operations, trying to acquire new business that they never truly have the time to think about security breaches. When it happens, it's often too late: the damage has already been done. And your company may never totally recover from this. In this presentation, I will show you how a data breach could potentially threaten your whole organization, and how to protect yourself to ensure that it never occurs in the first place.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Contents
Introduction
What are the Objectives of Data Security?
Why Data Security is important for SKOPE?
What Is Data?
A layered approach to Data Security?
How employee can Manage and Secure Data?
How Organizations can Manage and Secure Data?
Some Facts And Figures of Data Intrusions
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Objectives of Data Security And Privacy
Resource protection
Authentication
Authorization
Integrity
Confidentiality
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Why data security and privacy is important for SKOPE?
Loss of data from hacking, malware and other cyber intrusions can be
very costly for businesses.
Embarrassing notifications to
clients and customers when a
breach occurs.
Failure to adhere to data protection rules could result in legal action and a substantial fine
Accidental loss of your customer database might
leave you unable to carry out marketing.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Data Intrusions Are Expensive
In 2007, TJX Companies experienced one of the largest data breaches when over 45.6
million credit/debit card numbers were stolen from their
system over an 18 month period at a cost of more than
$256 million.
Global Payments, one of the largest payment handling
companies, discovered a data breach in March 2013 that cost
them $93.9M.
This occurs more often than many companies realise.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
What Is Data?
Data is distinct pieces of information, usually formatted in a special way.
This information may be in the form of text documents, images, audio clips, software programs, or other types of data.
Huge amounts of data about you can be stored on computer, and easily searched. That data can be lost, stolen or transferred to another country easily.
People need protection from careless or inaccurate processing of data about them, they also need to be able to see what data is being held about them.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
What is business confidential data ?
Any document of which most of them are in digital format including:-
• Your customer data in spreadsheets
• Business Plans
• Contract agreement and partnership documents
• Sales and marketing documents
• Employee information
• Financial documents, projections, budgets etc
• IPR including software designs, source codes,
• semantics, algorithm etc
• potentially patentable and business making ideas
• Business strategy
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
A layered approach to Data Security
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Physical Security:- Equipment containing personal data could be stolen in a break-in. You should ensure that personal data on your systems is protected against these threats. Your servers should be in a separate room with added protection. Back-up devices should not be left unattended and should be locked away when not in use.
Anti-virus and anti-malware:- You should have anti-virus or anti-malware products regularly scanning your network to prevent or detect threats. You will also need to make sure they are kept up-to-date.
Intrusion defence :- You need to be able to stop breaches happening before they penetrate deep into your network, for example, by using a well configured firewall.
Access controls :- Restrict access to your system to users and sources you trust. Each user must have their own username and password.
Employee awareness and training :- Employees at all levels need to be aware of what their roles and responsibilities are. Train your staff to recognise threats such as phishing emails and other malware.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Segmentation :- You can prevent or limit the severity of data breaches by separating and limiting access between your network components. For example, your web server should be separate from your main file server. This means that if your website was compromised the attacker would not have direct access to your central data store.
Policies :- A policy will enable you to make sure you address the risks in a consistent manner. Well written policies should integrate well with business processes.
Device hardening :- Remove unused software and services from your devices. Older versions of some widespread software have well documented security vulnerabilities. If you don’t use it, then it is much easier to remove it than try to keep it up-to-date.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
How employees can manage and secure Data?
1.Manage your data by creating different logical drive for different information or data.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
2. Create folder according to the information stored in that folders
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
3. Try to backup your whole data in External drive in every six months
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
4. Always update your software's and Windows for better performance and security
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
5.Installing Antivirus and Anti-Malwares to protect their data from Hackers.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
How Organizations Can protect and manage their data.
1. Flash memory thumb drive 2. External hard drives. 3. Online storage 4. Network-attached storage. 5. Tape Library
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Backup your daily work data in NAS device of your office or you can directly work on NAS device through LAN.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
We can also backup our critical data on remote server.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
Data Storage Devices and Tape Library devices for critical data backup.
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
TAPE LIBRARY FOR CRITICAL DATA WHICH WILL SECURE IN Natural Disaster
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
DATA CENTER WITH ALL STORAGE DEVICES AND LATEST HARDWARE FOR DATA SECURITY
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
APPLE DATA CENTER MAIDEN NC
FACEBOOK DATA CENTER STARTED IN 2014
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
SOME FACTS AND FIGURES
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
ORGANIZATIONS THAT ARE TARGETED
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures
/skopebusinessventures /skopebusinessventure /company/skope-business-ventures