People are the weakest link
This sounds like a nightmare too impossible to happen. US soldiers putting sensitive information online in non-secure third party websites. It defies belief, yet we’re reading that it happened. The story popped up on ‘Gizmodo’
It is alleged that US Soldiers were saving sensitive information on a couple of common flashcard sites, presumably of things they were trying to memorise and learn. Even worse, their settings were on ‘public’ not ‘private’
It’s a classic warning about the risk of people, however well intentioned, saving critical data online in places the organisation is unaware of, and can’t control. That’s why our new KARE for Security S2 plan helps identify use of these sites in your organisation.
US Soldiers Accidentally Leaked Nuclear Weapons Secrets: Report (gizmodo.com)
Shadow IT
Shadow IT is one of the largest threats to data privacy in organisations today.
It’s not necessarily because these sites are going to be hacked, although that’s always possible, but just because if you don’t know the tools are in use, then there is no way that you can manage them!
The first step to maintaining this data is to identify it! That’s why you need new tools that are cloud focused. If you’re still using the same old security tools that you used to use prior to the cloud, then you are not keeping up and we need to talk!
Are you maximising your technology investment?
Are you maximising your technology investment? When you last made a significant IT investment, you had a clear understanding of why you made it and the return you were seeking to achieve. You might even have had to justify it to a board and make various assurances...
IT is more than silicon – have you ever stress tested the human side of your I.T?
I.T. is more than silicon - have you ever stress tested the human side of your I.T? Every chain relies on every link, and the stronger each link, then the stronger the chain - hence the saying about the weakest link. Your IT chain has people - we need to think...
Are the appropriate IT Governance controls in place to protect your business value?
Are the appropriate IT Governance controls in place to protect your organisation? In most organisations, IT has grown organically, meeting business needs as they arise. Those demands have come through thick and fast from almost all areas of the organisation's...
Are you meeting your obligations to shareholders/stakeholders?
Are you meeting your obligations to shareholders/stakeholders? Until relatively recently an organisation's board typically only got involved with IT when the management wanted to proceed with a major capital investment - a system refresh, new software or a similar...
What to look out for in Windows 11
Whether we like it or not, Windows 11 has been putting in an appearance on many of our machines. For some of us, it is exciting to get a shiny new version of Windows. The potential is compelling. For others of us, we just want to get through our work and we don't...
10 IT Questions every Law Firm should be asking about their IT
Is IT Critical To Your Law Firm? From managing matters to productivity, from Deeds and archines to Precedents and Documents, Collaboration and Filing... Law Firms RELY on IT. Here are the key questions every FIRM should be able to answer about their IT...
Is the partnership doing enough to get the cyber-security cost/risk balance right?
Cyber-security protection can feel like an unending cost.You'll already be aware that the bad news is - no matter how much you do, there is always more that can be done, and no promises that any of the steps you take will make your practice 100% safe. We keep...
Is your IT strategy meeting the business needs of your partnership
There’s a saying that goes “A goal without a plan is a wish." With that in mind, do you have an IT Strategy? Is it aligned with your practice's business plan? The reason this is important is that it allows you to make better decisions and be more proactive with your...
Does your firm have the right relationship with your IT provider?
Regardless of whether your IT provider is your in-house IT team or a trusted business provider, do you have the right relationship with them? The right IT provider will ask "WHY" long before they ask "WHAT" and will be focused on proactively adding value to your...
Does your firm have an appropriate Data Privacy Policy?
Data Privacy is now a hot topic in NZ. As a law firm, you will be more aware of the legislation than us, but we have been astonished that not every firm seems to understand the ramifications for their own work product. You will know what is driving our concern:...