Beating the Insider Threat

For example you may decide to create a group that contains field workers. They use digital cameras to collect photographs and need to download the images back in the office.

In their case they will be granted access to a USB port for use by the camera. Additionally the product provides granular control over the type of device allowed to connect to the PC, so that a camera may only have network access to copy its images across but not permissions to download corporate data back onto the camera’s SD card.

GFI EndPointSecurity also comes with an event log that will record every time a device is connected to a PC, even if that connection should fail.

Once connected it will also record what data has been copied from or to the device, providing an audit trail of device and user activity.

Support for the tool is via a remote deployment tool that will distribute agents onto each PC in the network ready to start the monitoring process.

In addition if there is a need to allow temporary access to a device this can be granted by the administrator using the central control console.

The reality is that digital media is here to stay. It is cheap, effective and convenient and provides users and corporates incredible flexibility when it comes to managing their data and their business.

With appropriate, sensible precautions from products such as GFI EndPointSecurity there is no reason why they should not have an ongoing place in corporate IT.