Request a quote
Apply now
Reduce Human Error in your business

Human Error: Understand the IT Threat

December 12, 2017
Security Best Practices for Businesses

With over 90% of all cyber security breaches due to human error, it’s safe to say that mistakes in the workplace are more than costly. So what mishaps are your end users making, and what exactly are the repercussions to your organization? 

 

Many of the successful security attacks from external attackers who are preying on human weakness, waiting patiently for employees to be lured into providing access to sensitive information. Their human errors can be incredibly costly, especially since the insiders involved have access to a host of sensitive data.

One of the greatest impacts of a successful security breach is the exposure of this kind of information, loss of intellectual property and the infection of malware.

The Threat of Human Error

 

One of the most common mistakes made by employees, is sending sensitive documents to unintended recipients. This is relatively easy to solve when deploying security controls to monitor sensitive information being leaked from your organization.

These controls were once considered complex to deploy, but have now been made considerably easier to implement by vendors in recent years. This has dramatically reduced the level of user involvement required and increased the use of such controls.

These tools can also:

  • Prevent users from engaging in inappropriate behavior
  • Eliminate sending documents home via email, placing them on file-sharing sites or removable media such as USB sticks

See how the growing culture of bring-your-own-device (BYOD) exposes additional major concerns, especially with the risk of lost or stolen mobile devices. Again, technology vendors are available to help companies control what happens to data stored on such devices, even allowing sensitive data to be remotely wiped – so that it doesn’t fall into the wrong hands.

Even the most trusted and highly skilled employees run major risks of human error. System and network administrators are commonly guilty of incorrect system configurations, poor patch management practices and the use of default names and passwords. There are numerous security controls that organizations can explore to guard against these types of threats.

0
Read More

Rhode Island Identity Theft Protection Act – Do You Comply?

August 19, 2016
Cyber Security Services, Data Security, IT Security Services, Network Security Services, Rhode Island Security Matters, Security Best Practices for Businesses

identity theftWhat are Identity Fraud and Identity Theft?

According to the Federal Bureau of Investigation’s (FBI) Financial Crimes Report, the crime of criminal identity fraud is the involvement of the “…misuse of another individual’s personal identifying information for fraudulent purposes”.

The severity of criminal identity fraud ranges. The Rhode Island Identity Theft Protection Act is focused on serious acts of identity theft. Such acts include obtaining another individual’s personal information with the intent to compromise his or her assets. All are illegal, whether it is locally, stately, or federally.

A 2006 survey conducted by the Federal Trade Commission (FTC) stated that 255,565 Americans were victims of some type of identity fraud or theft in 2005. This figure accounts for 37% of all criminal fraud crimes reported – a staggering number of victims for the year 2005. Here we are 10+ years later, and the situation has not improved.

The Rhode Island Identity Theft Protection Act

The State of Rhode Island and the Providence Plantations recently amended the Rhode Island Identity Theft Protection Act. The changes became effective on June 26, 2016. Data security measures and breach notification laws have now changed. View the document here.

Here are a few of the highlights:

  • Rhode Island Attorney General and major credit reporting agencies must be notified of any breaches affecting 500+ residents
  • Businesses must destroy secure information of clients. Secure information can only be kept for the duration of the services provided.
  • Protecting personal information of Rhode Island residents is a requirement that requires maintained policies and procedures.
  • “Personal information” now includes all of the following: social security number; driver’s license number or state/tribal identification number; bank account numbers; credit or debit card numbers; medical or health insurance information; email addresses provided with passwords that allow access to personal information
  • Data must now be encrypted in, “a form in which there is a low probability of assigning meaning without use of a confidential process or key.”

Federal Law

Title 18: Part I – Chapter 47, Section 1028b of the United States Sentencing Commission’s Identity Theft Report, states that the sentencing guidelines for one count of the crime of identity fraud are a fine which depends on the severity of the crime and/or imprisonment for a maximum of one, three, or five years depending on the particular circumstances of the offense.

The punishments were made more severe in 1998 with the implementation of the Identity Theft and Assumption Deterrence Act. This legislation made the crime of identity theft punishable by a maximum $250,000 fine and/or a maximum of 15 years in federal prison, per count.

Final Thoughts

The expansion of the Rhode Island Identity Theft Protection Act is important for all Rhode Island businesses. Are you compliant with the new regulations? If not, then your business could face some serious penalties. Consult a reputable and local IT security company to go over your policies and practices. A simple audit could help save your business thousands of dollars of penalties.

0
Read More

Access Control Systems Secure Safety

February 2, 2016
Cyber Security Services, Event Security, IT Security Services, Network Security Services, Professionalism and Private Security, Rhode Island Security Matters, Safety, Security Best Practices for Businesses, Security Guard Services, Surveillance Cameras

access controlAccording to the Department of Homeland Security, access control is integrated security technologies that helps prevent victimization through asset monitoring, intrusion detection, video surveillance, and restricted areas. Private security companies put heavy emphasis on access control because of its importance to complete security. Physical access control systems are necessary to protect assets and cyber access control systems are critical for protecting sensitive information. (more…)

0
Read More

Rhode Island Security Professionals Get the Job Done

November 29, 2015
Professionalism and Private Security, Rhode Island Security Matters, Safety, Security Guard Services

rhode-island-securityA private security company is your partner in protecting your residence, neighborhood, or business complex from breaches. The best security professionals go beyond the contract with their clients. All levels of the private security company should truly care about their clients’ safety and well-being. This concept applies to all security companies – physical security and cyber security.  (more…)

0
Read More
Quick Links
Services
Locations

Corporate Headquarters
58 Waterman Avenue - North Providence RI 02911

MA Office
14 Holly Lane - Westport MA 02790

Toll Free: (888) 219-5296
Local: (401) 231-8130

Operating Live 24∙7∙365