Acceptable Use Policies are Not Enough if They are Not Enforced
According to a survey conducted by 8e6 Technologies (www.8e6.com), employees are using company computers and resources to conduct non-work related activities. Some of these activities simply wasting time, but others are malicious, or threaten company security or data.
Here are some of the more extreme cases:
- One employee was caught running a gambling website and acting as a bookie for his co-workers.
- To bypass the company’s web filter, one employee was caught using his desktop computer as an FTP server for the other employees. He had downloaded and saved over 300G of material.
- One employee was busted for giving away confidential information such as price lists, contracts, and software code for application development.
- Another employee was busted for having a side business stealing and selling company inventory on eBay.
- One woman was caught running an online outcall service from her desk.
- One employee was caught renting the corporate IP address to hacker friends to generate DOS attacks.
Although these are extreme cases, many companies have fired employees for violating company policies. It’s much more common than people realize.
As an employer, if you have an Acceptable Use Policy, which is strongly recommended, it must be enforced. Simply having it may not deter employees from finding ways around it in hopes of not getting caught.
There are excellent solutions that ensure that your Acceptable Use Policy is not violated, intentionally or otherwise. these solutions offer web filtering (gaming sites, gambling, or downloading viruses), email filtering (keywords or inappropriate jokes, etc), and many other must-have features.
Give us a call and let’s talk about your network security and Acceptable Use Policy, and find ways to make sure your company’s resources aren’t being wasted by your employees.