Public sector needs to tackle key security issues to avoid costly data breaches Public sector needs to tackle key security issues to avoid costly data breaches - RSS feed from Security Park
(25/01/2010)

Human error is considered the most likely cause of security breaches, but these could often be avoided if security and administration policies were put in place, and followed.

Those working in the public sector need to tackle key security issues if they want to avoid costly data breaches that impact both finances and reputation, according to a new guide from Network Box. The guide - Securing the public sector – discusses the issues facing public sector security, and lists key recommendations on how these issues should be addressed.

The guide addresses the issues facing the sector, including: data privacy (and the value of stealing data to criminals), budget pressures; increased home working; and increased use of web-based applications. The guide gives 10 key recommendations for best practice in public sector security.

1. Ensure that systems are updated and patched. Have some way of monitoring this critical function to ensure it takes place.
2. Remember security is about more than just email. Firewall, intrusion detection and prevention, access policies and VPNs are all critical elements of security.
3. Review what applications and systems are used across the organisation as part of ISO9001 or about once per quarter.
4. Ensure that all data is routed through the appropriate channels and that nothing bypasses security systems (this is one of the most common causes of vulnerabilities).
5. Educate employees – keep them informed about their role in keeping data secure and limit access rights.
6. Use a secure VPN for home workers, so data does not have to leave secure servers.
7. Don’t allow employees to download anything that isn’t approved by the security team, such as peer-to-peer software,
8. Encrypt all data and use secure passwords on mobile devices and laptops.
9. Check all outgoing as well as incoming data for possible data leaks.
10. Consider the total cost of ownership of running security systems. A specialist managed service can reduce costs by between 20 and 40 per cent.

Simon Heron, Internet Security Analyst for Network Box, says: “We’ve seen several high profile public sector security breaches in recent years, most of which have been preventable. Naturally, human error can never be completely eradicated, but guidelines and procedures can be established to minimise the risk that this represents to data security. We’re also seeing the public sector move from a closed environment, to a more online one, which has increased the risk of cyber-crime.”

Related topics:  Data management and data security   Internet and Web security   Network Security   Security management and policies   Security threats and vulnerabilities 


print versionPrint version | email this to a friendEmail to a friend | related articlesRelated articles


Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.


Other Security news and resources


Security News Suppliers Directory Jobs forum Classifieds Knowledge base White papers Research library Security books Special reports Security interviews Security companies Security events Security links Security market

Product channels

Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products

IT Security white papers and research library

Access Control  Authentication  Data Management  Data Security  Digital Signatures  Email Security  Identity Management  Internet Security  Intrusion Prevention  Network Security  Remote access security  Security Management  Security Policies  Security Software  Security Threats  Virus Detection Software  Virus Protection  VPN  Vulnerability Assessment  Wireless Security 

Security books, guides, standards and toolkits

RFID and Smart Cards books, guides and reference documents  Biometric books, guides and reference documents  CCTV books, guides and reference documents  Intruder alarms and intrusion detection systems books, guides and reference documents  Monitoring and surveillance books, guides and reference documents  IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits  Fire, Health & Safety books, guides and reference documents

Security Resources
Directory GET LISTED! Jobs forum Classifieds Knowledge base White papers Research library Security books Security videos Special reports Security companies Security events Security links Security market Company news

Security Products
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Security products

Security Markets
Bank and financial services security Corporate and enterprise security Education and school security Entertainment and events security Homeland and Government security Hospital and healthcare security Infrastructure and utilities security Manufacturing and industrial security Public sector security Residential and home security Retail security Small business security Sports and recreational security Transport and logistics security


Ensure that you conduct an effective information security risk assessment that is in line with ISO 27001 by purchasing vsRisk™ Risk Assessment Tool

Need a
Security reference book?
Find it on Amazon
Security books







advertise
sumbit an article
copyright
terms & conditions
privacy policy


CMS and Web design by www.Areza.com

Article search

Directory search


add your company
Google

ISO 18028 (Network Security Management)
Home | About | Contact | Submit article | Advertise | Newsletter | RSS | Search