How to secure a local network without hindering user experience
The cloud has soared in popularity, growing by more than 300 percent in the last seven years, making it difficult to ignore. Outside of corporate use, the cloud has really skyrocketed in general consumer use. Personal email and file sharing is almost entirely cloud based, increasing demand by staff for the same level of functionality at work. The cloud is therefore a popular choice for employees in almost any organisation, however, the biggest concern for business and obstacle to adoption is security.
The cloud is inherently open and can be difficult to secure. You can’t take it offline and there’s no plug to pull in the event of an incident. The best means to implementing robust security protocols remains in a layered on-premise approach. Remote working and globalisation have traditionally made it almost impossible to keep everything safe behind the walls of the internal system all of the time. Things are changing, and we’re seeing growth in the flexibility and adaptability of on-premise.
The issue that the availability of the cloud brings though, is that employees within a company can simply store confidential information away from the control of IT administrators. It is therefore key to ensure the right balance of security, usability and accessibility. This has not traditionally been easy to achieve, but by looking for software that caters to these needs, organisations can get that cloud feel, whilst keeping everything safe and where it belongs. Sometimes this is on-premises while providing the user experience similar to the cloud and others it is actually in cloud.
User experience
In my experience, the implementation of a system is usually the easy bit. The greater challenge is securing the overall staff buy-in. The modern workplace is full of temptations to cut corners making it ever more critical that usability is put at the heart of any implementation. Ease of access to unsafe storage and distribution, combined with modern time pressures and workloads, creates a considerable threat.
Software that allows for mobility and the sharing of data with third parties can be designed with similar functionality and user experience to modern cloud or even consumer offerings. Replicating experiences from other, frequently used platforms can make a huge impact in ultimately having staff adopt a new solution.
Our customers tell us functionality and security are both key considerations when they’re looking for information sharing solutions. Companies without the functional means to make day-to-day activity secure are likely to see greater numbers of security breaches, as a result of employees taking largely unnecessary (and unknowing) risks in order to save time. Ignoring functionality factors will also risk breaching compliance as some more risky actions of employees are likely to be in breach of data protection regulations or rules.
One of the important elements to ensure your organisation thoroughly examines collaboration products is to look for a solution that provides mobility. Our clients tell us that they want to have the ability to give their customers and partners access to sensitive data. These customers are inevitably outside of the companies own secure network, and a simple email attachment could be too risky, in the end. With the right tools, it’s now possible to ‘share’ important files and data, giving access to external partners, all whilst data remains under control the IT department.
Demand for flexibility is producing practical solutions that maintain the benefits of on-premise while providing necessary functionality, usability and mobility. Rather than just purchasing security products that are secure and compliant, organisations need to go beyond and confirm business demands are central to decision-making. Retaining control of data will always be key, and should be a minimum requirement, but ensuring mobility in the modern workplace should be a close second.
Intelligent Information Placement
Once the business needs for the organisation are determined, an analysis needs to be done to determine the value of the information and where best it should be located. Items of critical nature to the business should probably be kept a little closer to home using on-premises solutions. Those that are less sensitive can be stored in the less secure cloud provider environments. In many cases, it will be determined that the right solution is a hybrid approach where the systems work together providing the right security and governance for the right information.
If your IT system can’t support business needs and functionality, staff will end up taking unnecessary risks and you’ll have wasted your money on impractical software. It’s possible to bring the cloud back down to earth, just make sure user experience is not hindered.
By James president and CEO of Globalscape
Bio : James L. Bindseil is the President and CEO of Globalscape and serves on its Board of Directors. Before being named President and CEO in October 2013, Bindseil was Globalscape’s Senior Vice President of Client Operations and was responsible for the company’s worldwide sales and operations. During Bindseil’s three-year tenure as Senior Vice President of Client Operations, he not only grew maintenance and support revenue by over 75%, but also increased Globalscape’s enterprise customer support contract renewal rates to 92% per year.
Bindseil served honorably for the United States Marine Corps. He sits on the Board of Directors for the Boys and Girls Club of America and is a Boy Scouts of America Committee Chair. He is also an Ironman competitor.
About Globalscape
San Antonio, Texas-based GlobalSCAPE, Inc. (NYSE MKT: GSB) ensures the reliability of mission-critical operations by securing sensitive data and intellectual property. Globalscape’s suite of solutions features the EFT platform, the industry-leading enterprise file transfer solution that delivers military-grade security and a customizable platform for achieving best-in-class control and visibility of data in motion or at rest, across multiple locations.Founded in 1996, Globalscape is a leading enterprise solution provider of secure information exchange software and services to thousands of customers, including global enterprises, governments, and small businesses. For more information, visit www.globalscape.com
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.