facebook linkedin twitter

Computerware Blog

Best Practices to Control Your Access Control

Best Practices to Control Your Access Control

Over time, your business will accumulate a lot of data, including some that certain employees or departments will have no need to see (or perhaps shouldn’t see). An effective way of keeping eyes from wandering is through an access management policy. Let’s go over a few elements you ought to prioritize in your approach to controlling internal access.

Role-Based Permissions

Let’s say that you have a hypothetical business that employs 25 people, one of whom handles your human resources. So, while most of your employees are tending to your clients and customers, one of them is handling payroll and billing. Feel free to double-check my math, but that means that a grand total of one person needs access to your business’ financial information in order to fulfill their responsibilities. Why leave the option open for another employee to take a peek at these records, even if by mistake?

By using a role-based access management solution, you can help prevent this from occurring without devoting too much time to individually assigning permissions. Instead, permissions can be applied to work roles en masse. This way, all you have to do to rescind or assign new permissions to a user is to remove or add a role. This makes adjusting permissions much simpler, more efficient, and less likely to result in a mistake.

Limiting Permissions to the Functional Minimum

On a related note, you need to consider the extent of your role-based permissions, especially in an office where there are multiple departments. While managers may be an authority in the office, there isn’t very much reason that your HR manager would need to edit the data that your Fulfillment department generates - although there may be some resources that the two departments would need to share.

While you should avoid restricting your employees’ access to the point that they cannot do their jobs, you also need to protect your data by limiting them to just the data they need. Many solutions offer the ability to even grant temporary permissions, so that you don’t need to worry about forgetting to adjust a user’s permissions later.

Layering Protections with Multi-Factor Authentication

In theory, passwords should be enough to secure an account, but there are a few considerations that prevent this from being the case. First, cybercriminals aren’t manually typing in each guess they have. They instead leverage automated programs to rapidly try countless (by human standards) different combinations to make their way in. Secondly, it isn’t as though all users are creating passwords that are sufficiently secure, either.  Examples like the use of common dictionary words, simple-to-remember numerical codes, and other basic strategies have been in place for years to the detriment of business security.

There is some pretty considerable historical precedent, especially where lax password preferences are concerned. The entirety of the United States’ nuclear arsenal was defended by a passcode for 20 years that shows just how likely it is that your users will cut corners:

“00000000”

So, it isn’t an unfair assumption that your business data may not be as well-protected as it ought to be.

This is where Multi-Factor/Two-Factor Authentication (MFA/2FA) comes into the picture. Rather than just providing a credential that you know, you’ll have to go another step and provide additional proof of your identity (as you confirm through your username and first authenticate with your password). This additional proof of your identity forces you to utilize some other method of authentication--one that a cybercriminal typically finds difficult to intercept or duplicate--to confirm that you are who you claim to be.

This secondary authentication can come in many forms - whether it is an additional code delivered to you on demand via an app, a physical dongle that you insert into the device you are trying to access, or some biometric identifier.

Taking these methods into consideration, you actually have many options to help keep your data secure, while still accessible to those who need to use it.

For help in implementing any of these methods, lean on the professionals at Computerware. Give us a call at (703) 821-8200 to learn more.

How a Mobile Device Policy Can Benefit Your Busine...
Collaboration Is a Big Deal for Businesses
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Tuesday, February 18, 2020

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Tip of the Week Technology Best Practices Privacy Business Computing Internet Software Cloud Business Management Hackers Data Hardware Microsoft Workplace Tips Backup Network Security Managed Service Provider Business Hosted Solutions Productivity Email Malware IT Services Saving Money Efficiency Computer Productivity Google User Tips IT Support Smartphones Innovation Small Business Mobile Devices Data Backup Quick Tips VoIP IT Support Collaboration Business Continuity Gadgets Network Microsoft Office communications Data Recovery Social Media Android Upgrade Disaster Recovery Server Cybersecurity Mobile Office Communication Virtualization Smartphone Mobile Device Management Miscellaneous Phishing Holiday Ransomware Tech Term Operating System Vendor Management Windows 10 Passwords Windows Outsourced IT Internet of Things Unified Threat Management Managed IT Services Remote Monitoring Apps Facebook Automation BDR Mobile Device BYOD Remote Computing Apple Managed IT services Mobile Computing Data Management Analytics Users WiFi Windows 10 History Artificial Intelligence The Internet of Things Marketing Browser Cloud Computing Save Money Firewall Alert App Big data Help Desk Two-factor Authentication Bandwidth Business Technology IT Consultant Encryption Spam Office 365 Training Gmail Office Health Managed IT Government Content Filtering Cybercrime Information Technology Going Green Hard Drives Bring Your Own Device Maintenance Antivirus Printer Access Control VPN Virus Tech Support Search Windows 7 Managed Service Recovery Employer-Employee Relationship Lithium-ion Battery Retail Best Practice Outlook Windows 8 Cost Management Information Hiring/Firing Wireless Technology Healthcare Saving Time Budget Computers Customer Service Travel It Management Education Update Blockchain iPhone Data Loss Phone System IBM Networking Hacking Money Project Management Document Management Humor File Sharing Twitter Intranet Applications Hard Drive Wireless Law Enforcement Avoiding Downtime Compliance Mobility Website Patch Management Solid State Drive Risk Management Conferencing Data storage Current Events Save Time Data Breach Value Password Downtime Customer Relationship Management Legal Hacker Augmented Reality PowerPoint Regulations Proactive IT Running Cable SaaS Computing Administration Virtual Desktop End of Support Hosted Solution Robot Social Data Security Securty Google Maps DDoS Storage Social Engineering Flexibility Scam Black Market Business Intelligence Voice over Internet Protocol Cryptocurrency Word Excel Digital Payment Monitoring Laptop Private Cloud Cortana Router Business Growth Digital Wi-Fi Fax Server Telephony Comparison Tablet Websites Management Machine Learning Company Culture Computer Repair Paperless Office Vulnerabilities Telephone Systems Sports Social Networking Cooperation Software as a Service User Vendor Disaster Processor Specifications Safety Network Congestion Vulnerability Bitcoin Identity Theft IT service Documents Data Protection Teamwork Heating/Cooling Distribution Entertainment Streaming Media Inbound Marketing Downloads Politics Professional Services Virtual Reality Emails Bluetooth Automobile Chromebook Net Neutrality Pain Points Chrome User Error Redundancy Co-managed IT Smart Devices Computing Infrastructure Hack Google Docs Meetings Memory How To eWaste Download Managed Services Provider Evernote Experience Computer Accessories Monitors Virtual Assistant Cleaning Office Tips Multi-factor Authentication Lifestyle Microchip Taxes Trending Gaming Console Telephone Processors Start Menu Tech Terms Mouse Managed IT Service Mobile Technology YouTube Distributed Denial of Service USB Webcam Presentation Unified Communications Settings Text Messaging Statistics Public Cloud Licensing Programming Uninterrupted Power Supply Managing Costs Spyware Mobile Payment Startup Asset Tracking Relocation Tablets Point of Contact Microsoft 365 Electronic Health Records Business Cards Service Level Agreement Banking Botnet Electricity Printing Get More Done Username Thin CLient Medical IT Trend Micro Permissions Language Memes Unified Threat Management Backup and Disaster Recovery 3D Ebay Sync Browsers Smart Phones Gamification Notifications CCTV Digital Signature Security Cameras Threats Printer Server Screen Reader Customer Resource management User Tip Proactive Maintenance Turn Key Computer Malfunction Recycling Navigation Virtual Machine cache Television Trojan switches Writing Smart Tech Reliable Computing Solutions Analytic Music Piracy Upload Business Metrics Employees WannaCry Upgrades HTML Leadership Product Reviews eCommerce Organize IT Fiber-Optic Database Adminstration Pirating Information In Internet of Things Data Analysis Mobile Security GDPR Managing Risk Time Management Freedom of Information LiFi Telephone System PDF SQL Server Read Corporate Profile Motion Sickness Best Available Keyboard Tech Hypervisor Assessment SharePoint Multi-Factor Security Cost Scalability Integration Software License Trends Device Management Fileless Malware Hybrid Cloud Google Calendar Deep Learning Devices Messenger Tracking Domains Holidays Tip of the week Work/Life Balance Fraud Tactics UTM Content Rental Service Public Speaking Modem Business Managemenet Strategy Touchscreen News Webinar Visible Light Communication Proxy Server Content Management Azure VoIP Enterprise Resource Planning Web Server Shortcut Term Consultation IT consulting Legislation Upselling Error Cabling Electronic Medical Records Transportation Knowledge IT Plan Directions online Currency Display Technology Tips Accountants A.I. Books Workers Troubleshooting Recording Optimization Communitications email scam Addiction Video Surveillance Administrator Entrepreneur CIO Saving ZTime Supercomputer HIPAA SSID How To Fake News Advertising Flash Environment Dark Web Free Resource Audit Migration Connected Devices Competition Processing LinkedIn Managed Services Data Warehousing Windows XP Wireless Headphones Worker Electronic Payment Health IT Employee/Employer Relationship Staffing Google Wallet Wasting Time Access Best Practives Displays Equifax Harddrive Fleet Tracking Reading Samsung Business Owner Logistics Virtual Machines Emergency Hard Drive Disposal Society IT Assessment Network Management Debate Computer Care Micrsooft Device security MSP Employer Employee Relationship IP Address Skype Cyber security Microsoft Excel GPS G Suite Bookmark Archive Desktop External Harddrive Finance Hacks Physical Security Application Google Play Telephone Service Google Drive Windows Server 2008 Nanotechnology Social Network Human Resources Employer/Employee Relationships Microserver Drones Financial Surveillance Managing Stress Printers CrashOverride Regulation 3D Printing Capital Personal Information Productuvuty

toner1