It's 4:00AM and Somebody Just Downloaded 50GB of Data from Content Server!
Do you have security in place to protect your organization?
Detecting strange and unusual activity in Content Server is one of the biggest concerns for administrators. With the Edward Snowden case in the forefront of anomalous activity stories, Admins must take every precaution to make sure that valuable company secrets are kept secure and away from competitors and those looking to profit from the distribution of valuable information.
And with new laws such as European Union General Data Protection Regulation (GDPR) valuable information now includes private personal information such as social security numbers, employee personal data and other private personal data. Do you know which libraries contain this sensitive content?
There are three important areas to monitor in Content Server to help uncover potential breaches of data. The first area to monitor is login activity. You need to be able to detect if a user account has been compromised. This is detected by identifying users accessing Content Server from unusual areas like a US based employee logging in with an overseas IP address. Another thing to look for are users logging in at unusual times of the day like 4:00 AM.
The next area to monitor is work habits. You need to be able to detect when people are accessing Content Server outside their normal work hours or if they have unusual work patterns. For example, is someone in finance continually accessing software development files or is a programmer consistently looking at financial data.
The final area to monitor is Content Server activity. For example, are you seeing large amounts of data downloaded at off hours? Are there an unusual amount of LiveReports being run? Which employees are accessing areas of Content Server that contain sensitive PII information such a social security numbers, birth dates, employee addresses, etc.
Monitoring Content Server activity is just one area where security can be improved. Another area to look at improving is scanning your documents to identify sensitive information. The new European Union General Data Protection Regulation is an example of the type of laws organizations are being forced to comply with. This regulation requires that organizations protect personal information and follow strict rules when storing personal information of European Union employees. Violations of the GDPR regulation could result in fines of up to EUR 20,000,000 or 4% of the company's worldwide revenue. This means organizations must be aware of which documents that have been placed into Content Server contain personal sensitive information and protect it accordingly. The only way to do that effectively is to scan the content using software designed to detect and report specific sensitive information. Being able to differentiate between a social security number and the number of a manufacturing part is a difficult but necessary feature of this type of software.
Syntergy is addressing these types of security issues with powerful new add on modules for Content Server. We have recently seen quite a large increase in interest in our data security products due to these new offerings and the increased regulations around sensitive data. To learn more and determine if it these products are a good fit for your organization we encourage you to contact Syntergy at (858) 779-9642, email us at info@syntergy.com or visit our website at www.syntergy.com.