Sabotage protection – or how to double-secure internal company secrets

How do you protect secret information from sabotage? There are two possible scenarios you should consider when answering this question: sabotagers can cause damage from the outside as well as from the inside. This is because, in principle, a potential threat can also come from people within your own company.

An essential step is therefore to make sensitive documents and directories accessible only to employees who really need them for their work: Following the need-to-know principle.

In the case of facilities that are vital to life or defence, training in sabotage protection for these employees is also required.

How does the need-to-know principle work?

In principle, you should check for all data which employees need access to it. Is the knowledge that can be gained from the data really important for certain employees? For highly sensitive data, you should also check whether there is a protection instruction.

Consistent checks to ensure that protective instructions have been carried out are thus part of the administrator’s tasks, which in turn requires additional time and organisational capacities. A fully automated software solution can be used to reduce these efforts.

Automated authorisation management relieves the burden on IT administration by including the persons responsible for data in the authorisation process. At the same time, you avoid sources of error that can arise from last-minute requests.

With sustainable authorisation management, the allocation of access rights becomes traceable – even years later. The BAYOOSOFT Access Manager enables you to have a permanently traceable authorisation situation. In addition to creating data protection classes, you can also mark resources accordingly.

There is no additional effort for the IT administration in tracking. The documentation of authorisation changes is fully automated. Through continuous monitoring of the existing authorisation structure in the Active Directory and file system, all unexpected deviations are logged and reversed.

A view into the near future

In particular, the new feature for defining groups of pre-authorised users in version 2021.1 ensures that only employees who have undergone the sabotage protection training in advance are authorised. This is because version 2021.1 of the BAYOOSOFT Access Manager includes the option to define a pre-authorised group of people per data protection classification.

In addition: If the employee to be authorised subsequently undergoes protection training, the past authorisation allocation is not invalidated: The rights are conveniently implemented in the target system when this criterion is met.

Are you interested in authorisation management for a certain group of people – completely independent of sabotage protection? The new feature can also be used for this purpose.

Learn more about the BAYOOSOFT Access Manager. Register now for a product presentation and get to know the software tool.

Do you have specific questions? Feel free to use our contact form.

Inquiry

Sabotage protection – or how to double-secure internal company secrets

Share now

Latest News