It is a well know fact that humans are considered the weakest link in security. It is, therefore, very important to consider humans when planning on implementing security solutions in an organization. You may have employed physical and/or logical controls to secure your assets but regardless of what you apply humans can find a way to avoid them, disable them, or subvert or circumvent them.
Various security structures that you can implement to protect from human threats are as follows
Various security structures that you can implement to protect from human threats are as follows
- Following secure hiring practices. This practice include detailed job description and using this as a guide for hiring process. Correctly evaluate candidate for the position.
- Maintaining roles segregation. This practice includes separation of duties, job responsibilities and job rotation.
- Establishing policies, standards and guidelines. Set standards, provide guideline and formulate policies for every step. From hiring to termination. Like termination procedure could include disabling access, returning company property, an exit interview etc.
- Implementing risk management. Risk management is a process of reducing risks to an acceptable level. It identifies, evaluates, prevents/reduces risk to the organization.
- Implementing awareness training, and management planning. Remember that user's behavior must change for your security solutions to work. So, aware them, train them and educate them.
No comments:
Post a Comment