Offering regional and national programs, CIO (and CSO) events bring together some of the most respected names and thought leaders in information technology and security. Presented by CIOs and other senior level executives, these invitation-only programs offer timely topics and strong networking. Learn More »
Public Teleconferences
Join CIO Executive Council members and participate in the following live teleconferences:
* Planning for Succession:
Models for IT Leadership Development, June 23
* Change Leadership at General Growth Properties: A
Pathways Leadership Development Seminar, June 25
* Managing Change: Centralizing Your IT Organization
July 29
Apply today for a FREE subscription to CIO Magazine!
Feature
Data Leaks: What You Don't Know Will Hurt You
How do you know employees aren't transmitting sensitive data off your network if you're not bothering to look? How one company found a technology answer that led managers to institute new training programs and other changes.July 10, 2007 — CIO — Back in 2004, something didn’t seem right within the sales group at WebEx, the software-as-a-service Web conferencing provider. Many sales executives worried that critical competitive information —such as WebEx pricing data —might be slipping out to WebEx’s competitors before the sales force could close deals with prospective customers.
“A deal would be made [with a potential customer] by one of our competitors, and the price was right below what we were going in at,” recalls Randy Barr, CSO at WebEx, which claims 64 percent of the Web conferencing market and hosts 50,000 conferences on an average day. (Barr’s responsibilities include both physical and information security.)
That concern prompted sales department executives to ask Barr and the CIO at the time to investigate the situation. After several days of investigating (interviewing sales reps, scanning network logs and searching through sent e-mails), Barr concluded that no information had been leaked.
However, the investigation and subsequent conversations with WebEx executives prompted all involved to wonder if there was a way that the company could actively monitor its internal networks, especially because all of WebEx’s tools are proprietary.
Barr says executives were looking for details on not just what happened yesterday on WebEx’s systems, but they wanted to understand and prevent what might happen today and tomorrow. Barr’s team revisited sensitive data-handling procedures and also set out to identify if any vendors could help them improve the gatekeeping technology behind the processes.
In Search of Safeguards
Though Barr felt confident there was no systematic data leak problem, the discussions and investigative process gave him reason for unease. “I didn’t feel confident where all the information was coming out of our network,” he says. He was also concerned that it was “taking us such a long time to investigate the request,” he says. Depending on the request, investigations such as the sales team one could take half a day to a couple of days —and he wanted to speed that process up. In addition, Barr worried about not only tracking WebEx documents that he knew existed but the “documents that we don’t know exist.”
Barr isn’t alone. During the past three years, spectacular data-handling transgressions and subsequent compliance and regulatory mandates have lit a fire under CIOs and CISOs to protect their digital borders —from both insider threats and outside malcontents. In addition, there’s been a big push to safeguard companies’ intellectual property, says Paul Proctor, a research VP at Gartner who tracks vendors in the content monitoring and filtering (CMF) and data loss prevention (DLP) market.
Business Service Management: The Top 10 Misconceptions about Performance and Availability Monitoring
Real Customer, Real Results
A proven approach to WAN optimization
Advancing the Economics of Networking White Paper
Unified Communications
Wi-Fi, WLANs and Wide-Area Wireless: One client to connect them all
Getting Network Management Right: A Gartner IT briefing
Enabling the Global Enterprise
The Network as a Critical Asset in Driving High-Performance Businesses Webcast
The New "Black Art." Learn why few companies do DNS well. Why fewer can scale it.
Advanced DNS and Traffic Management Solutions: The Keys to Enhancing and Securing your Enterprise Network
Procurve Manager Plus Video
Resource Alerts
Get instant email notifications by topic when white papers, webcasts, and case studies are added to our library.
Lithuania: Attacks Focused on Hosting Company
Google Bows to Pressure, Adds 'Privacy' Link to Home Page
TSMC Says 2Q in Line Or Better After Major Customer Falls
Asustek to Offer Eee PC with Built-in 3G Wireless
Asustek's Latest Eee PCs Shipping in Asia in July
Lenovo Seeks Prestige in Price-Sensitive Market
Microsoft's Silverlight Draws Patent Suit
A Tale of Two City Wi-Fi's
Google Under Pressure As App Engine Requests Rise
Wall Street Beat: IT Slumps in First Half
How To Do Nearly Anything
Just the basics, please. Sometimes we all need a refresher or we need to make sure our team and our colleagues are all on the same page.
Over 25 tutorials on everything from business intelligence to virtualization.
