Reducing Insider Security Risks, Data Loss: 10 Best Practices | eWeek
Cybersecurity
SHARE
Facebook X Pinterest WhatsApp

Conduct a Comprehensive Risk Analysis

Conduct a Comprehensive Risk Analysis
Written By
Chris Preimesberger
Chris Preimesberger
Feb 7, 2013
2 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More


Conduct a Comprehensive Risk Analysis

Conduct a Comprehensive Risk Analysis

Analyzing potential risks from human errors will better prepare you to act should they occur.


Proactively Address Weaknesses

2

Educate and train employees about common threats, aggressor tactics and expectations when it comes to following corporate policies and procedures. This must be done in tandem with the deployment of security tools and standard risk management practices designed to help the business mitigate security breaches.


Create Actionable Policies and Procedures

3

Reform data security policies and procedures by putting them into actionable, simple-to-understand language that your employees are more likely to understand and observe.


Avoid Counterintuitive Policies

4

Policies that interfere with employees’ ability to do their jobs can create a corporate culture that undermines the power of its own written requirements.


Advertisement

Include BYOD Policies

5

BYOD policies should feature clear direction on tolerable behavior and device uses. Include application whitelists and blacklists.


Create Consequences

6

Further mitigate the risk of human error by publicizing repercussions for employees who violate company policies throughout the organization. Tough love can be effective.


Adapt Education and Awareness Activities

7

Gone are the days of one-time, daylong training sessions. Continuously remind users of their responsibilities and of the very real consequences for poor choices. Deploy active training measures to keep these concerns top-of-mind.


Evolve Beyond Basic Tools

8

Passwords, firewalls and “secured” (SSL-encrypted) browser connections are not enough. Enhanced detection, monitoring, response and containment capabilities must exist.


Deploy Mobile-Device Management

9

Choose MDM software that supports multiple device types, provides remote-wipe capabilities, and includes capabilities that track data and applications.


Create Ironclad Personal Device Agreements

10

Make it clear to your employees how their devices are being managed and clearly outline privacy rights.
Chris Preimesberger
eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

facebook
linkedin
youtube
rss
x

Company

About us Contact us Advertise with us

Categories

Latest News Resources Artificial Intelligence Video Big Data & Analytics Cloud Networking

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information