When you are using SharePoint or Office 365, you must be aware of the intranet security. There are
some common mistakes or pitfalls that must be avoided after assessing the risks
and the threats to your organization.
Passwords: This is a very essential factor while using the intranet. Passwords must
be changed, in a frequent manner, may be after 60 days. When you are using a combination
of keyword symbols and letters with a good length, it is considered to be a
good password. Make sure you are not using a single character or your pet’s
common name as your password.
Firewall Set Up: Never try setting up the firewall of your organisation in a hurry.
Ensure that the default settings have been edited and tested properly before
finally setting it up. A properly configured firewall can provide a security
audit in most of the cases.
Rogue Code and Viruses: While
performing any document management
process, you are required to prevent viruses and rogue codes properly. The
antivirus security packages come with browser settings, mail client settings,
web page settings and write protection for different users. Java and other
executables can be embedded in a single document or web page and can be opened
with an application. The security policy of the organisation must include the
settings of the antivirus programs which can be launched by default.
Remote Access: If your organisation requires to be accessed from remote places, you
must be careful of the security process of the intranet. You can allow a
virtual private network for establishing secured connection with the intranet.
Try to test and analyse the loopholes of the virtual private network before
assessing from remote areas.
Encryption: Encryption or the authentication process can be available with the
authentication options such as the Secure Socket Layers. You can convert the
entire authentication functions to the SSL or equivalent options.
Content Management: When it comes to knowledge management or content publishing, the intranet is responsible for
exchanging the information among the colleagues. You can update and verify the
tables of the job functions including the web page data.
E-mail Management: Your
organisation must maintain an active approach towards the email security. You
must take note that your internet service provider (ISP) is providing you with a
secure mail extension. If your ISP is not providing the secure multipurpose
mail extensions, you might consider changing your provider.
Standard Software: If you can identify any unauthorised software, immediately try to remove
it. For maintaining the standard software, you must opt for the licensed servers
where the bugs and the vulnerabilities can be repaired easily.
Security Audit: For checking the weak points of the intranet, try to implement an annual
security audit with spot check functions either quarterly or monthly.
As 100 % security is
impossible in any computers, you can try as much as possible to avoid the
pitfalls of the intranet security. Try to identify the threats and
vulnerabilities and implement the safety measures. You can verify whether the
system is meeting the security benchmark of your organisation or not.
No comments:
Post a Comment