Putting File Transfer Security into Action
Putting file transfer security into action
So how should an organization ensure file transfer security? A comprehensive managed file transfer (MFT) solution can empower an organization and its external partners to securely share information and track what has been shared by whom and when. The key is simplifying information exchange without requiring technical or professional services or forcing users to modify behavior. Deploying a robust solution can easily automate an organization's file transfer process, while providing the security and control needed to prevent security threats.
MFT initiatives should take a unified approach that accounts for all file transfer needs, regardless of how it is sent, the file type, protocol, format, etc. It's also critical to track and manage files with detailed auditing and reporting tools to ensure compliance with mandated standards including the Sarbanes-Oxley Act, the Payment Card Industry Data Security Standard (PCI DSS), the Health Insurance Portability and Accountability Act (HIPAA) and the Gramm-Leach-Bliley Act (GLB).
Five simple steps
Take these five simple steps to make sure your organization has a secure file transfer process in place:
1. Automate and consolidate your file transfer process
2. Account for all file transfer types, sizes, protocols and needs
3. Eliminate the burden on the user; don't rely on them to modify their behavior
4. Retire the scores of legacy and consumer freeware
5. Keep track; monitor all inbound and outbound file sharing
Every organization should strive to secure files in transit and at rest, monitor files that are moved within and outside the organization, and ensure that those files are only accessible to authorized individuals.
Sandy Weil is President of the Proginet Group at TIBCO. Before this, he was a Director, President and CEO at Proginet Corporation (acquired by TIBCO). At Proginet, Sandy was responsible for providing strategic leadership, direction and management. Sandy joined Proginet in the spring of 2008. Before that, Sandy served as a partner and senior executive at Accenture, one of the world's leading global management consulting and technology firms. During his 14-year tenure at Accenture, Sandy held senior management positions in the infrastructure outsourcing, business process outsourcing, and managed reference data service practices, with specific responsibility for sales, marketing, strategic alliances and general operations. He was made partner in the firm in 2003. Earlier in his career, Sandy gained experience in the technology industry at various enterprise software and hardware companies. He holds a Bachelor's degree in Psychology from Hobart College. He can be reached at firstname.lastname@example.org.