Ekran System Blog

News, opinions, and industry insights

  1. Blog
Insider Threat Awareness: What Is It, Why Does It Matter, and How Can You Improve It?
April 13, 2021

A low level of insider threat awareness among employees can cause all sorts of cybersecurity issues: user negligence and risky behavior resulting in cybersecurity incidents, non-compliance with critical regulations and industry standards, etc. Installing new software and establishing stricter rules can’t always protect an organization from these threats. Raising the cybersecurity awareness level, on the other hand, can.

 

In this article, we discuss what insider threat awareness is, explain why it’s important to raise the level of awareness among your...
Category:
Security
Read more
Zero Trust Architecture: Key Principles, Components, Pros, and Cons
March 16, 2021

Whom can you trust within your network? In the zero trust paradigm, the answer is no one. The zero trust approach to cybersecurity states that access should only be granted after a user is verified and only to the extent needed to perform a particular task.

 

In this article, we take a detailed look at different approaches to zero trust implementation. We explore the basic principles of a zero trust architecture and consider the key pros and cons of this cybersecurity approach.

 

Zero trust in a nutshell

 

No one can be trusted by...
Category:
Security
Read more
Remote Employees: How to Manage Insider Risks
March 02, 2021

In 2020, remote work became not just a trend but a must for many companies. Yet ensuring secure telecommuting turned out to be a challenge for cybersecurity teams: Remote employees tend to use insecure tools, work in unprotected environments, and mismanage sensitive data. All of this increases the risk of insider threats. 

 

In this article, we take a close look at the challenges remote employees bring and the risks they can pose to your organization. We also offer six best practices for insider risk management.

Insider threats vs insider risks

 ...
Category:
Security
Read more
People-centric Security for Remote Workers
February 17, 2021

In striving to make sure in-office and remote employees’ work is secure, organizations often rely on technology-centric approaches. Although user monitoring tools and other cybersecurity solutions do their jobs, they still can’t affect employee behavior and fully secure remote work. To engage remote employees into cybersecurity, organizations are now shifting to a human-centric approach.

 

The people-centric approach to security aims to treat workers more as a cyber shield for corporate data rather than a vulnerability. In this article, we explore what this...
Category:
Security
Read more
How to Build an Insider Threat Program [10-step Checklist]
February 10, 2021

An efficient insider threat program is a core part of any modern cybersecurity strategy. Having controls in place to detect, deter, and respond to insider attacks and inadvertent data leaks is a necessity for any organization that strives to protect its sensitive data. It’s also required by many IT regulations, standards, and laws: NISPOM, NIST SP 800-53, HIPAA, PCI DSS, and others.

 

In this article, we’ll share best practices for developing an insider threat program.

What is an insider threat program?

 

Creating an efficient and...
Category:
Security
Read more

Pages