Huawei and Commvault jointly launch the Hybrid C... » Huawei and Commvault have released their Hybrid Cloud Backup Solution at CeBIT 2017, currently takin... MOBOTIX brings innovation and partnerships to ISC ... » During ISC West from the 5th to 7th of April at Sands Expo in Las Vegas, NV, MOBOTIX (stand 16065), ... ST. MICHAEL'S OPENS DOORS WITH HELP FROM ERA » David Stapleton and Era’s Tania Tams with Mrs. Grundy and pupils at St Michael’s First School Vig... 17% growth ensures Nationwide Platforms remains wo... » Nationwide Platforms has once again retained its position as the world’s largest IPAF provider after... Le Pen Seeks Anti-terrorism Operations in Chad...B... » "Well, Marine Le Pen may be able to save France from abroad. But hold on for a minute, do you really... Synectics to showcase urban transport surveillance... » David AindowUrban transport networks are in danger of data overload. Guarding against emerging secur... TomTom Telematics collaborates with SOTI » TomTom Telematics has announced a collaboration with SOTI that will see the company’s popular flag... Dimension Data launches support and managed servic... » London, United Kingdom: Dimension Data has extended its current offering with Cisco Meraki. This inc... LOCKEN ANNOUNCES STRATEGIC COLLABORATION WITH ISEO » Leading developers of cable free access control, LOCKEN and ISEO Group, an Italian based designer,... Sopra Steria finds UK citizens want more secu... » London: Sopra Steria has revealed that UK citizens are keener than ever to use digital public servic...

CLICK HERE TO

Advertise with Vigilance

Got News?

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

READ MORE

Subscribe to Vigilance Weekly

Information Security Header

London, UK: Commenting on new research that has found that one in five employees uses Dropbox for work files, data governance specialist Varonis says the findings highlight the need for more robust controls that take the security risks out of collaboration. To add to the worry, the study - with insights from more than 1,000 corporate IT users - also reveals that when IT has a policy against using file sharing at work, half of employees use these services nonetheless; and corporate leaders are the worst culprits. VPs and directors are most likely to use Dropbox despite the risks.

 

The findings, from enterprise storage provider Nasuni, corroborate and support Varonis’ own industry research on cloud sync services. The study, conducted with IT professionals earlier this year, found that:

80% of companies do not allow their employees to use the cloud services they want due to security fears; however, 36% of respondents reported that they are regularly using cloud-based file synchronisation services

70% of companies would use these services if they were as robust as internal tools

20% of companies have no measures in place at all to prevent their staff from accessing file synchronisation tools, leaving their employees free to take sensitive data outside the company with them

Only 9% of those have created authorisation and review processes for the data residing in the cloud

Only 30% report that senior management knows where organisational data reside

78% of those surveyed would prefer to use their existing permissions and storage rather than the cloud

With Bring Your Own Services (BYOS) threatening to sweep past all company defenses and carry away the company data, the reaction seems two-fold: while the majority of companies block file sync services completely, the rest leave their employees free reign.

"We weren't surprised to see the results of Nasuni's research. We know from our experience as well that as workers are increasingly required to divide their time between working on the move, at home and in the office, companies and employees alike yearn for the convenience of file sync services. There continues to be an increasing amount of industry research that's proving employees are circumventing IT controls, breaching the defences of a corporation and introducing a host of new vulnerabilities.

"The challenge for us all as solution providers is to deliver services that maintain the robust security controls while empowering staff to do their work wherever, whenever and from whichever device they need," said David Gibson, Vice President of Strategy for Varonis.

Gibson offered tips for secure collaboration:

Create an inventory of your most used collaboration platforms to get an overview where data lives, who has access to it, and who is using it.

Identify data owners for each data set and have owners perform a preliminary entitlement review to see if data is stored in the right place and if the right people have access to it.

Remediate any exposures, such as data that is accessible to too many people or regulated/sensitive content that is stored in the wrong place.

Monitor access to all data – this will help easily identity data owners and identify unused data and abuse.

Put a process into place that provides secure collaboration for remote employees - including synchronisation, mobile device support and extranet functionality – that works within the existing enterprise servers and infrastructure.

***To download Varonis' Cloud Synchronisation Services Research report, visit http://hub.varonis.com/BYOSSurvey