« Podcast: ITIL requires better log management and analytics to gain IT operational efficiency, accountability | Main | The Obama plan: accountability and startups with funny names »
Respect Your Customers – Protect their Information
It's always refreshing to talk to customers and be reassured we are helping them improve their businesses day to day. Last week, we announced both The Body Shop International PLC and Ameren Corporation (NYSE: AEE) as new LogLogic customers. Both companies are using LogLogic to meet regulatory compliance – The Body Shop is using LogLogic in the U.S. and will deploy us in the UK, EMEA and APAC to meet the Payment Card Industry Data Security Standard (PCI), and Ameren is using LogLogic to meet the North American Electrical Reliability Corporation (NERC) requirements as well as Sarbanes-Oxley (SOX).
I want to call your attention to my customer-hero of the week: Jon Granville, Director of Global E-Commerce & IT for The Body Shop. He is committed to protect customer data as a way to show respect to his customers - compliance or not. We love Jon's enthusiasm! Particularly as we experience an economic downturn - businesses will need to show they value customers by protecting their personal and private information. Unfortunately, this is not always the case.
Just last month, Cisco announced research findings for the most common data leakage risks and mistakes employees make. Out of the 2000 employees and IT professionals surveyed in 10 different countries, respondents admitted to a number of astonishing risky behaviors, such as:
- · Altering security settings to bypass corporate security policies and access unauthorized sites
- · Accessing unauthorized areas of networks and facilities
- · Sharing sensitive corporate data with non-employees
- · Sharing corporate devices with non-employees
- · Losing portable storage devices
- · Allowing others to "tailgate" behind them into corporate facilities
- · Leaving devices with passwords to personal financial accounts and corporate systems unattended and unlocked
Cisco also released a few whitepapers on the topic. One reports:
· A shocking 11 percent of employees said they or fellow employees accessed unauthorized information and sold it for profit, or stole computers.
· 20 percent of IT professionals said disgruntled employees were their biggest concern in the insider threat arena.
What can we learn from this? First off - we encourage all consumers to buy goods and services from companies who will protect you and your identity. Demand to be treated respectfully. Second, for any business interested in earning or maintaining customer trust, protect customer data above all else. Not only are there regulatory compliance mandates across various industries telling you to do so, but can you really afford a major data breach in today's economic climate?
Posted November 18, 2008 in | Permalink
August 2010
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | 31 |
Categories
Archives
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005
Blogroll
Blogroll
Compliance
Good Reading
- Internet and Web Security Review
- Log Management ROI
- Log Management Best Practices
- SANS Institute Log Management White Paper