1Manage Authorized Devices
2Block Unauthorized Devices
3Develop an Encrypted USB Plan
4Issue Company-Approved Devices
Instead of just telling employees that they should be using encrypted drives and setting passwords, provide them with authorized devices with a directive that they are the only ones that can be used. If the enterprise doesnt provide secure USBs and implement policies that allow users to be productive, employees usually find a way to work around these security systems out of necessity.
5Pick the Appropriate Level of Security
6User Training and Education
7Set Clear Security Policies
Setting a policy is just the first step, but its an incredibly important one. Identify who is authorized to download data onto secure drives and create a policy that limits access to only those users. Make it clear on how to obtain the drives, how they should be stored and what kind of password protection needed.
8Encrypt the Data
9Secure the Endpoint
Even the most careful user can wind up connecting an infected USB device to corporate computers. Up-to-date antivirus software is critical for keeping the network safe from known and unknown threats. Scan the USB drives as soon s they are connected. For older Windows machines, make sure the patch to disable AutoRun is installed.
10Remove Insecure Devices
A recent Ponemon Institute report found that 72 percent of employees use free drives from conferences and tradeshows, even if the organization provides “approved” devices. Those devices often can spread malware. Encourage employees to “trade in” these devices for company-authorized USB drives.