THE SOLUTION: E-SAFE COMPLIANCE
During the initial rollout, e-Safe Compliance was installed in silent mode to evaluate the level of the problem. The following is a summary of the findings:
They detected two of their staff members, who had resigned, had copied large amounts of the company’s data on their thumb drives on their last day in office. This was a clear breach of their contracts.
e-Safe Compliance detected some unauthorised people accessing sensitive information such as client lists.
There was evidence of a few people accessing pornographic images, videos and websites. Although most of these sites should have been blocked, Sophos, as a URL list-based system, was unable to block the many URL permutations of porn sites Furthermore, Sophos had no answer to the problem of detecting offline porn material.
e-Safe Compliance’s Drive Audit detected a huge number of personal videos and images being stored on company machine, with the top violator having nearly 800GB of video files in his 1TB hard drive.
After analysing the findings, the company announced to their staff that their machines will be monitored and they should refrain from doing non-company-related activities on company machines during working hours as specified in their contracts and IT policy. This resulted in the following benefits:
Legal notices to delete the copied files were sent to the two ex-staff. This event was made public within the company, which resulted in the elimination of unauthorised access of information within the company.
By announcing to the users that they will be monitored and the managers of the top violators will be alerted, there was a 50% reduction in the amount of time spent on unproductive Internet surfing.
The issue of pornography was completely solved. As people know they could get caught while accessing pornographic material, whether from online or offline sources, they stopped doing it.
Using e-Safe Compliance, the company implemented shutdown or hibernation settings on PCs, hence helping to save electricity.