Security Risk
Ego have asked me to come in and check there security of there company
The treats you would get for not having a log in to the network anyone would be able to access your network and take all your information you have stored on your hard drive plus hackers can put viruses The Data act of 1998 Protection Act is mandatory. All organizations that hold or process personal data must comply
internet (unrestricted access)-means all the employees would be able to go on the websites they wanted and would be distracted from there work and would be going on websites they should not be on and also hackers would able to take all the costumers personal details and that is knowing as identity thief when you steal someone’s personal information.
staff are ‘allowed’ to install and remove software- the only person to remove and install software would be the network manager it is bad to let all staff members be able to remove software because they could come in and steal the software in which the business has paid for and they also could delete every software on the computer and leave you with nothing.
data is backed up once a month- you always back up your data a few times a week making sure that you have all your data saved make sure you don’t lose any off your files/work if you did only back up your data once a month you would lose off on three weeks work
data tapes are kept secure in a locked plastic box on top of the server- you should not a data tape in a plastic box on top off the server because just incase there was a fire in the server room your data tapes would be destroyed and also if they were left on top of a server the plastic box would melt because servers heat up always put your data tapes in fire safely box.
The company keeps records in a database on customers
This information includes- A company should also make sure they keep sercutiy log in when they has costumers details because you don’t want just anyone going on and see all personal information which can lean to identity thief they can see what the costumer has bought or what problems they have staff are not aloud to discuss costumers details it is meant to be confidentiality I have also heard staff members talking on the phone and giving costumers details over the phone which you should not be doing because you don’t know who the person is on the other side of the phone they don’t have any confidentiality with costumers
Also there is no fire wall installed which means they computer can fight of virus that are send to the hard drive and will be bad because you could lost all your data/ information and there is not restrictions on downloads which’s means you could staff members going on to games are online casino.
The building should be have cameras on every floor of the building and security men on the main doors and walking about also have smoking alarms also when members of staff walking in they should have a swap card to show that it is them walking into the building.
