Security Risks



There is NO log on.
There are 50 users and not one of them has their own log on, they all access the one account.
This means anybody can access this and that your files are not secure.
To prevent this you will have to:
Need to set a username and password to everyone’s individual account so that people can only access their own account and own files, to keep data secure. Set levels of restriction.

Internet access (unrestricted)
Within these 50 users some may be under the age of 18 and can access all websites.
This means that any website can be accessed, including games, social networking, and adultery and other unsafe websites and catch a virus and will keep you distracted from work.
To prevent this you will have to:
Create a personal server so that everyone can only access certain websites that are safe to use, suitable to use and websites that will not cause a virus.

Install and remove software at any time
There are 50 users and all 50 people may not need to use the same software at the same time, any user can remove software which means another user may not be able to work as they need that software.
This means anybody can install and delete software at any time.
Losing out on money.
Work production reduces.
To prevent this you will have to:
Make an administrator account so software can be controlled by one responsible person.
Security measures – restrict/stop installing and removing software.

Data only backed up once a month
50 users all at work and data only backed up once a month.
This means if files are lost they will not be backed up.
To prevent this you will have to:
Data, and files should be backed up at all times (once or twice a day), so if lost a backup will still be there.


Data Tapes
Data tapes are kept secure in a locked plastic box on top of the server – this is a bad thing and they are not kept SECURE, the servers will heat up and the box is made of plastic which will melt on top of the heated server.
This is loss to all the data that has been stored.

The company keeps records in a database on customers.
This information includes:
Purchases
Account Numbers
Bank Details
Customer names and addresses
Purchase History
All staff has access to this which shouldn’t be allowed as information could get out, your staff has already been overheard passing out information on customers to other suppliers and on more than one occasion your staff have been heard passing customer information out through the telephone.
This is breaking the Data Protection Act and Computer Misuse Act.
Also email is available to all which means everyone can access the emails and also staff could pass information out through emails.

 IP address log is not kept of sites visited
Other websites and FAKE websites can access your IP Address and hack into your systems, they can find all information, you can lose all data and it can leave a virus.
Someone could hack into the system and use customer information for fraud.
There is NO Firewall in place, Firewall prevents viruses, worms and Trojans and your company is at risk of catching a virus, worm or Trojan.
Get firewall and other anti-virus protectors.

Downloads are not monitored
When downloads are not being monitored this can be a problem to the company in many ways and for many reasons.
A few of these reasons that associate with your company are:
Illegal Downloading – your employees could be making illegal downloads on anything such as, movies, music and even adultery items.
Viruses – your employees could be downloading unsafe items of unsafe websites that can attract viruses, worms and even Trojans.
Also they could be downloading software that is not relevant to the job and even illegal software.


Entrance doors are not protected by keypad
The entrance doors, back doors and even the side doors should be protected by a Keypad entrance only workers should know the code.
This prevents burglaries and unauthorized access to the building, it prevents people coming into the building and taking information and other useful and important items.
Your company should also invest in CCTV (CLOSED CIRCUIT TELEVISION) to keep your building even more secure. This will protect all files and information within the business.

No comments:

Post a Comment