Follow this blog:: RSS; Email Alert

TR Dojo

Video: Five ways to keep your own IT staff from stealing company secrets

October 10, 2008, 12:14 PM PDT

Takeaway: The arrest of a network administrator who hijacked the city of San Francisco’s network brought attention to a dangerous and often ignored threat–your own admins. In this IT Dojo video, Bill Detwiler discusses security practices to protect company secrets from the very people who should be keeping them safe.

High-profile breaches of private data are often the results of lost or stolen equipment, malicious hackers, or improperly disposed of storage devices. Yet, the July 2008 arrest of a network administrator who hijacked the city of San Francisco’s network focused the spotlight on a potentially more dangerous threat–your own admins.

In this IT Dojo video, I discuss the following five security practices that will help protect your company secrets from the very people who should be keeping them safe:

Follow the rule of least privilege
Not all IT staff should be domain admins
Monitor additions to admin-level groups
Log all administrative activity
Immediately revoke admin rights for terminated IT staff

After watching the video, you can read more on these five security suggestions in Tom Olzak’s article, “How do you keep your sys admins from stealing company secrets?”–the basis for this video.

Get IT Tips, news, and reviews delivered directly to your inbox by subscribing to TechRepublic’s free newsletters.

About Bill Detwiler

Bill Detwiler is Head Technology Editor of TechRepublic. Previously, he worked as a Support Tech and IT Manager in the social research and energy industries.

Monitor Internet bandwidth with BitMeter and SurplusMeter

IT Dojo travels to Gartner Symposium/ITxpo 2008

Comments

Add Your Opinion

Join the conversation!

Follow via:: RSS; Email Alert

See All Comments

Staff Picks
Top Rated
Most Recent
My Contacts

No messages found

0 Votes

+ -

Look twice as hard at the complainers

Dr_Zinj 14th May 2009

People who complain about security requirements usually fall into two categories: those who have a legitimate complaint that should be looked at to improve the business, and those who have their personal agendas interferred with by the security requirements that aren't necessarily in the best interests of the company.

This is definately not rubbish. Normal I.T. turnover puts newer, less experienced people in the drivers seat; for which periodic reminders like this are helpful. And especially because senior managers turn over and are new, inexperienced, possibly I.T. ignorant (yes, there's a lot of them still out there).

It's OUR jobs as information system and technology professionals to advise management on security best practices and to recommend policies/requirements that provide the most protection (least risk) for the lowest cost (in terms of time, money, and resources).

View in thread

0 Votes

+ -

Consideration..

cbulla@... 16th Dec 2008

You know, its not always the accounts that are the best doors. I have a freind who works elsewhere now who used GoToMyPC to demo its use while director and administrator at our previous job. At last check, it was still installed on a workstation thats used for administration of network activities which we found to be unlocked and open for use under the current managers name after hours...way after hours. It was checked because we'd realized the program was still on her laptop and it was being reappropriated for some simple email tasks and we said "I wonder... nahhh, but it would be funny... no way~!!"

Short story is the whole OS was reinstalled and on internal network stuff only now..

The admins have their hands full and a backdoor account is only one avenue. How many audit their firewall or workstations.

View in thread

0 Votes

+ -

Outside Audit

PVBenn 16th Dec 2008

The company I work at gets audited yearly by outside auditors both Financial and IT Security specific. Some think they are Gods gift to the Security industry and others are decent to work with.

You cannot be too sure of yourself and I appriciate getting autided as it tells me where Potentail flaws are. As well I like getting an audit with little or no issues as it shows my boss I'm keeping ahead of the pack and keeping the wolves at bay.

Less Security issues = More time for fun Projects.

View in thread

Once logged in, adding contacts is simple. Just mouse over any member's photo or click any member's name then click the "Follow" button. You can easily manage your contacts within your account contacts page.

See all comments