|
||||
Over time, certain myths about data security have become common thinking throughout IT organizations. As these myths have grown, so have the security threats that affect businesses and customers. MENTIS protects against real threats with a quick ROI. Myth #1 – We have firewalls. More than 74% of U.S. corporate financial losses are from four main security sources*:
Though 98% of U.S. companies use firewalls*, protecting the organizational perimeter alone does not prevent information leaks or resulting financial loss. While hackers (external threats) have moved beyond Denial of Service attacks and into attacking data stores, the insider threat is also seen as a substantial portion of the losses for many companies. Myth #2 – We trust our employees. IT organizations may have long-term employees with signed confidentiality agreements, but according to Oracle, 80% of all security breaches originate from inside the organization. If you have any of the following situations, signed paperwork does not guarantee protected data:
MENTIS provides security at the most critical level – where the data resides, so employees only see the information they need to do their jobs. Myth #3 – We have never been hacked and can handle the situation when an intrusion occurs. According to the Computer Security Institute, 70% of companies patch security holes after an intrusion takes place. In addition, 78% of organizations choose not to report most computer related crimes to law enforcement mostly because negative publicity could hurt the company image. However, the reported cost of doing nothing currently totals $52,494,290* and organizations are in the news on a regular basis because of data theft and failure to properly notify customers. MENTIS’s tools prevent and protect - a much more powerful position when faced with data security threats and industry compliance requirements. You have the flexibility to keep services up and running, protect valuable assets, and gain the competitive edge of customer confidence. Myth #4 – We have recently passed a database security audit Data security threats and their methods of execution are constantly evolving. For the seventh year in a row, identity theft is #1 on the Federal Trade Commission’s 2007 List of Top Consumer Complaints. The amount of revenue lost to consumers has increased over the last three years from $568,702,566 to a staggering $1,187,305,506 – and only 8% of fraud victims have reported to police.** In light of this data, plus the data on intellectual property and financial loss, one passed security audit does not mean an organization can continue without an intrusion. Solid preventative controls and best practices are essential. Myth #5 – We have limited access to HR data Sensitive information is stored in a surprising number of database areas, not simply in the Human Resources Application. Customer, Student, Patient, Vendor and other stakeholder data repeats across multiple databases, versions, modules and applications. One piece of data or pieces of data in combination could constitute a breach of privacy. Sensitive data could be accessed by hundreds and thousands of current or former consultants and employees that still hold passwords or decryption keys. Even one line of new code could mistakenly expose highly sensitive data to the wrong set of eyes. If you are only protecting your HR Application, data at the database level of that module and all others is still exposed. MENTIS protects sensitive data throughout your organization and that of your outsourcing partners. According to the 2006 Study conducted by the Computer Security Institute (CSI) with the participation of the San Francisco FBI’s Computer Intrusion Squad - http://www.gocsi.com/press/20060712.jhtml. **http://www.digitalinfrastructure.ziffdavis.com
|
|
|
|
|
|
|
|
|
