Greetings O' Wise and Wonderful Community!
I have a very vague question that I am hoping to get some slightly less vague answers for.
I was recently contacted by a client who has had a recent ex employee try to take a large chunk of data out of Confluence with them before they left on their last day.
Of course the company is now scrambling to plug holes in their security. They are asking for any ideas as to possible ways to prevent something like this from happening going forward.
The problem with this of course is how do you identify possible data thieves before they attempt to steal?
You can do your due diligence and lock stuff down, but you also must find that line of not being so onerous with security your employees cannot work.
They are asking about Watermarking all docs that get pulled out of Confluence, but there are ways of getting around that.
I suppose in my mind, I think they need to just be more vigilant beyond having the normal day to day security features enabled (access/password etc).
So I suppose I am asking all of you for any suggestions around Jira/Confluence security that is outside the norm?
Thanks as always for your thoughts and comments?
You cannot prevent this type of scenario (disgruntled ex employee) with enhanced security measures (physical or virtual). If the CIA cannot do it with multi factor authentication, hardware security modules, retina scans and their humungous budget , there is no hope for your client :) Like it or not, the established best practice is to fire the disgruntled ex employee's manager.
The management needs to be trained (good business practices, manners and common courtesy). This will take you much farther than any security measure you can implement.
Online forums and learning are now in one easy-to-use experience.
By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.