Managed Devices and Data Security for Business
Data security for businesses has been in the spotlight for several years, and more so as criminals concoct more impossibly genius scams to gain access to personal data. Responsible businesses are working hard to maintain a high level of security and carefully monitor their connected systems.
Despite this, one of the biggest data breaches South Africa has ever experienced occurred in May 2020 when international credit bureau Experian, handed over personal data of approximately 24 million people and nearly 800,000 business to who they later identified as a “fraudster.”
Worryingly, this information included cell phone numbers, physical and email addresses, ID numbers and banking details.
Despite their claims that the data breach was contained, this information has already been found on the dark web.
Timeslive tells us, “Digital forensic investigator Craig Pedersen said the stolen data is valuable not only because it contains phone and identity numbers, but because of the banking details.
“Identity numbers usually sell for 15c per user. Add banking numbers, and people on the black market will pay up to $1.50 [R25] per record. These records are potentially worth millions of Rands.
“The impact will be immense because data is never just bought once on the black market. It’s sold multiple times. In the terms of value, this is probably SA’s biggest leak. It’s valuable because of what you can do with it, like obtain loans and open online retail accounts.”
“Craig Rosewarne, director of Wolfpack Information Risk, said: “Looking at Stats SA population figures, this leak could easily mean nearly 90% of the adult working population has had their data stolen.”
Device and Data Security for Your Business
If an international company like Experian with the deep pockets and resources to maintain a premium security system can be foiled, surely, we need to take a closer look at our own digital security?
Managing Your Devices
We’re guessing that if your business is anything like so many overstretched South African businesses, then your IT department will probably be stretched pretty thin too.
It takes a great deal of time and effort to keep these ever-changing systems updated and in optimal running order, which tends to shift focus from essential tasks such as threat detection, security updates and patches, and device monitoring.
In addition, should a security issue arise, are your IT teams in the best position to deal with it immediately and effectively? Are they up do date with the current global threats and any intelligence which could benefit or protect your business?
The critical interconnected systems which need to communicate with each other and externally need our full attention to ensure a constant, high level of security. This is especially true in the financial services industry where the safety of customer information forms the foundation of their business.
Certainly, it’s clear how employing managed services – especially concerning data security – can be immensely beneficial.
How to Choose Managed Services
Making something as important as the security of your data “somebody else’s problem” can be a big decision.
Can you trust that this business is compliant? Can they be relied upon for continued best-practice and guarantee that the agreed SLAs are going to be met or exceeded?
Card compliance
Card transactions are under constant threat making card processing systems a key area for concern. A keen focus on the entire system from your card terminals, your network and internet connection, and any associated devices or should be a perpetual requirement.
Choosing managed services for these devices requires that they are compliant.
Closely following PCI policies will go a long way to maintaining the safety of customer data. “The Payment Card Industry Data Security Standard (PCI DSS) is the commonly accepted set of policies and procedures set out to protect cardholders’ money and information and maximise the security of card transactions.”
The PCI Security Standards website notes, “The PCI Data Security Standard (PCI DSS) applies to all entities that store, process, and/or transmit cardholder data. It covers technical and operational practices for system components included in or connected to environments with cardholder data. If you accept or process payment cards, PCI DSS applies to you”
Are you compliant, or do you need a little help?
Trustworthy and Consistent
A business which has been around for decades and which can assist you in both avoiding and dealing with security threats is essential.
They will understand and implement regular, important updates for devices and applications and ensure that all connected devices are configured and patched against internal and external threats.
Choosing the right business to manage your devices and data security will result in reduced business risk, better protection, more efficient operations, and an IT team which can focus on other important initiatives.
Huge Connect is that business.
Let’s connect.