This Day On The Street
Continue to site
ADVERTISEMENT
This account is pending registration confirmation. Please click on the link within the confirmation email previously sent you to complete registration.
Need a new registration confirmation email? Click here

Weak Help Desk Security Traced To Lack Of Training, Loose Processes And Too Much "Helpfulness"









BEDFORD, Mass., July 17, 2013 /PRNewswire/ --

Story Highlights:

  • RSA released the findings of a SANS Institute research survey on help desk security and privacy.
  • Respondents included more than 900 IT professionals worldwide from a variety of industries including government, finance, education, healthcare, IT and telecommunications
  • 69% of respondents cite social engineering as biggest threat to help desk security while nearly 27% surveyed report having weak help desk security policies
  • 43% of respondents do not take the cost of a security incident into account when establishing their help desk budget; rather help desk budgets are determined by the number of users.

Full Story:

RSA, The Security Division of EMC (NYSE: EMC), today announced the findings of a new report by the SANS Institute spotlighting the threats and privacy issues facing help desks today. Surveying more than 900 IT professionals worldwide, SANS 2013 Help Desk Security and Privacy Survey identifies the most common help desk vulnerabilities and offers guidance designed to help organizations address these critical issues. Survey results include results on organizations' help desk processes, procedures and personnel behaviors that have potential implications to enterprise security.

Help desks are most commonly asked to assist users in addressing common IT problems including password resets and application and connectivity issues. Often the performance of help desk employees is measured by how quickly they can serve callers and resolve the issue. Unfortunately, in many cases, security does not play a major role in the process and as a result, help desks have become an unintended entry point for hackers and malicious insiders attempting to gain access to sensitive enterprise resources.

Most respondents (69%) identify social engineering as their biggest threat to help desk security.  Yet a majority of organizations still use basic personal information including name/location and employee ID number to verify the identities of callers into the help desk -- information that can be easily sourced by an imposter.  Furthermore, many help desk employees will bypass security controls in an effort to be more helpful to the caller.

1 of 3

Check Out Our Best Services for Investors

Action Alerts PLUS

Portfolio Manager Jim Cramer and Director of Research Jack Mohr reveal their investment tactics while giving advanced notice before every trade.

Product Features:
  • $2.5+ million portfolio
  • Large-cap and dividend focus
  • Intraday trade alerts from Cramer
Quant Ratings

Access the tool that DOMINATES the Russell 2000 and the S&P 500.

Product Features:
  • Buy, hold, or sell recommendations for over 4,300 stocks
  • Unlimited research reports on your favorite stocks
  • A custom stock screener
Stocks Under $10

David Peltier uncovers low dollar stocks with serious upside potential that are flying under Wall Street's radar.

Product Features:
  • Model portfolio
  • Stocks trading below $10
  • Intraday trade alerts
14-Days Free
Only $9.95
14-Days Free
Submit an article to us!
SYM TRADE IT LAST %CHG

Markets

DOW 18,070.40 +46.34 0.26%
S&P 500 2,114.49 +6.20 0.29%
NASDAQ 5,016.9290 +11.5380 0.23%

Partners Compare Online Brokers

Free Reports

Top Rated Stocks Top Rated Funds Top Rated ETFs