|
Wednesday, 02 February 2011 13:01
|
|
| Frontpage - Feature Content |
|
Businesses have an obligation to customers, employees, and community to secure the information entrusted to them from malicious abuse. There is an expectation that information is not put at risk when doing business with entities. And an expectation the business can properly identify, protect, and produce data from their possession which supports suspicious of abuse, misuse, theft, or crime happening within their information systems. Digital forensics is a dramatically increasing and important part of IT security. Computer crimes are costing US businesses billions of dollars per year. A high percentage of these crimes involved corporate employees. In the face of this information companies should not be willing to ignore the facts. Companies are obligated to make sure data and systems are as secure as possible. Employee fraud is on the rise and can range from policy violations to computer misuse, from email abuse to financial fraud, from intellectual property theft to malicious attacks on systems for financial gain. Disgruntled employees, under appreciated employees, persons seeking revenge, or those just presented with opportunity because of lax security standards are all a threat to a company. It is a very real threat to the viability of any company, and can cause both physical and financial damage. An employee simply abusing the use of corporate email or internet resources can cause a strain on the corporate infrastructure, but can also open up the entire organization to vulnerabilities. The same misuse from an employee who abuses his work day by downloading music, looking at pornography, watching movies, etc. wastes financial resources and affects the work flow of an entire organization. Computer forensics involves protecting, gathering, and analyzing data from electronic media including computers, portable devices, cameras, smart phones, fax machines, portable storage, and servers. This data can be found in any form; such as photographs, images, text, documents, email, internet history and pages, deleted files, and other information stored to a hard drive. This analysis and investigation can provide a company data or evidence to use in prosecuting such cases. Whether in a court of law, for internal employment disciplinary action, or simply to gather information about a suspected individual for inclusion in their employment file, it is integral information for any IT Security unit. You must not only consider computer crime as the things which can happen TO you, but also the events which use your resources as an instrument of the crime. Combating, protecting, or investigating computer crimes is a proactive effort, which needs expert navigation.
|