The latest bond movie, Spectre, has broken box office records here in the UK, since its premiere last week. And who can resist the cocktail of glamour, gadgets and fast cars. But whilst some of those are pure cinematic gloss, the risk of intelligence leaking and data getting into the wrong hands is a real problem, with potentially dangerous consequences. But, Bond or not, data protection and security are within our grasp.
Writing on the walls
You don’t need to be an MI5 agent to want to keep your data safe, or to want to share that data with HQ whilst you are out off the office (or in Bond’s case chasing gun-shooting villains down the Andes on skis). The reality is that without secure file sync and share strategy in place, employees will create their own methods for sharing data; using email, a USB device or uploading sensitive files to public cloud services. Your company’s data may not have the fate of the country in its hands but all companies have sensitive data that they do not want exposed. Using methods such as the public cloud services leaves organisations open to data breaches, unplanned outages and accidental data loss, which can impact both a company’s reputation and finances.
Dropbox recently suffered a major outage leaving customers unable to access their data, an issue that impacts profit and productivity, but it’s the security risks of the public cloud, that organisations with sensitive data should be concerned about. Furthermore, if employees use their own file sync and share methods this will leave data outside of the company’s visibility and control. I doubt MI5 would host its material on a public cloud service, so why should organisations in sectors with equally sensitive data, such as banking, healthcare and education, take the risk? Exposing this data may not affect national security, but it can leave companies and their customers vulnerable and likely to pay hefty, compliance fines.
When it comes to the public cloud, as Sam Smith would sing, the writing is on the wall.
Public vs. Private Cloud
Whereas public cloud storage services like Box and Dropbox are designed to store everything on their infrastructure and transfer all of your data through their servers, private cloud appliances can offer a central service instead to establish secure, encrypted connections between authorised devices. Once an authorised connection is established, the data and metadata are encrypted at the source using military-grade AES-256 encryption and then transferred directly from device to device – that’s good enough for 007. Your data is never stored in the cloud and private encryption keys are generated and maintained directly on the devices ensuring that no one – not even the real MI5 can see your data.
I Spy… File Sync and Share
Whether they love you or not, a spy is still a spy. With a secure file sync and share storage platform organisations can control read/write rights. This means access has to be granted and there is clear visibility into who can access, share and overwrite data. Plus some appliances enable users to restore older versions of files that have been accidentally overwritten and recover files and folders that have been accidentally deleted. So, should Bond become aware of a spy amongst his MI5 colleagues, he can check a full audit trail of who has made changes to the file and when. Then Bond can simply restore previous versions and remove any access rights from the suspected spy.
Stop your Data Getting All Stirred Up
Whether its MI5 agents, freelancers or simply home workers, companies can have difficulty ensuring that all the data is protected and stored in a central location. 007 may report verbally to M and attend de-briefs but even MI5 needs to keep a central record of data. Luckily, having clever technology to protect your data is not fictional. Organisations can have a file sync and share solution that offers security; protection, data visibility and automated replication back to HQ. The solution? A private cloud- securing data for your eyes only.
[su_box title=”About Geraldine Osman” style=”noise” box_color=”#336588″]Geraldine Osman is VP International Marketing at Connected Data. She has over 18 years of technology marketing leadership experience, much of which was gained specialising in storage and security. Geraldine has worked extensively with pioneering technologies to bring them to new markets and geographies, defining go-to-market strategies that deliver fast adoption of next generation technology.
Geraldine joined Connected Data in 2014 and is responsible for all marketing aspects including thought leadership, market category creation, field marketing and strategic pipeline planning. Prior to joining Connected Data, Geraldine worked for Barracuda Networks where she was responsible for establishing the marketing function in EMEA and accelerating regional growth leading in to their successful IPO.[/su_box]
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.