1.7 million reasons for local authorities to use privileged data access

Dedham, (PresseBox) - Reports that a number of local authorities are sacking staff for viewing personal data on the DWP's Customer Information System (CIS) comes as no surprise, says Cyber-Ark, but merely serves to highlight the need for highly privileged access to this kind of data.

According to Mark Fullbrook, the IT security vendor's European Director, taking a data silo approach to private data is now the optimum approach to allowing privileged access to information, as well as allowing the data to be shared between specific people on a carefully controlled - and encrypted - basis.

"It's interesting to note that Cardiff Council sacked a member of staff for looking at CIS information on celebrities. This was probably an employee looking to expend their knowledge of celebrities beyond the confines of Hello magazine, but that staffer could also have sold the data on to a national newspaper, so the fall-out for the council could have been very bad indeed," he said.

"It's also quite worrying that Computer Weekly's research has revealed that staff at 34 local authorities incorrectly accessed data on the CIS between 2006 and 2009, but that only nine members of staff were actually dismissed," he added.

Clearly, says Fullbrook, these incidents are 34 too many, but given the fact that local government employs 1.7 million full-time employees (source: http://tinyurl.com/pl9luj) - that's one in 35 of the UK's population - rogue employee actions of this nature are inevitable.

This is why it is essential that effective privileged controls be placed on the viewing and exchange of CIS data by local authorities across the UK, he explained.

And, he went on to say, the technology required - centering on highly secure storage and privileged email-driven exchange of the data - now exists to control access to the large databases such as the CIS.

"Our own Inter-Business Vault technology is a prime example of this, as it allows privileged access to the data, as well as allowing encrypted and auditable sharing of data between nominated members of staff as and when required," he said.

"There is simply no excuse for the UK's 430-plus local authorities not to use the technology that is available. And there are 1.7 million reasons for this," he added.

For more on local authority DWP-CIS unauthorised database accesses: http://preview.tinyurl.com/lhjglv

For more on Cyber-Ark: http://www.cyber-ark.com

Press releases you might also be interested in

Weitere Informationen zum Thema "Sicherheit":

Mehr Sicherheit in Kubernetes

Set­zen Un­ter­neh­men auf Con­tai­ner spielt die Si­cher­heit ei­ne be­son­ders wich­ti­ge Rol­le. Denn Con­tai­ner wer­den häu­fig für Web- oder Cloud-Apps ver­wen­det, die auch von ex­tern zu­g­reif­bar sind. Das Open-Sour­ce-Sys­tem Ku­ber­ne­tes (K8) ent­wi­ckelt sich im­mer mehr zum Stan­dard bei der Au­to­ma­ti­sie­rung, Be­reit­stel­lung, Ska­lie­rung und Ver­wal­tung von Con­tai­ner-An­wen­dun­gen und er­for­dert des­halb be­son­de­res Au­gen­merk bei der Si­cher­heit.

Weiterlesen

Subscribe for news

The subscribtion service of the PresseBox informs you about press information of a certain topic by your choice at a choosen time. Please enter your email address to receive the email with the press releases.

An error occurred!

Thank you! You will receive a confirmation email within a few minutes.


I want to subscribe to the gratis press mail and have read and accepted the conditions.