You are here: silicon.com > Software > Security Strategy

Security Strategy

Learn to spot the fraudsters on your network

It may be the person you least expect...

By Will Sturgeon

Published: 28 April 2004 09:35 GMT

Long-serving male executives are more likely to defraud their company than any other demographic group according to research from KPMG.

While the likelihood of fraud undoubtedly owes more to an individual's position within the company than gender or age, 70 per cent of fraud is committed by male employees and 40 per cent is committed by staff working in the finance department.

KPMG expressed alarm at the seniority of execs defrauding their companies, but others would argue that is hardly surprising those closest to the money - with 'the keys to the safe' - are committing the crimes more than those with relatively few security privileges.

However, the news still suggests companies have a long way to go in terms of physical and digital security.

A number of companies are recognising this need for a greater marriage between physical and digital security - monitoring people's movement through the building and the network and flagging up anomalies - such as working late or coming in at the weekend to access drives not critical to their 'day job'.

Simon Perry, divisional vice president of security strategy at Computer Associates, believes companies need to be smarter about what employees are doing on the network and in sensitive documents – particularly around the end of somebody's contract or around the time of their resignation.

One of the most common forms of corporate fraud involves employees sharing sensitive data with a rival - often one they are joining, thus gaining an advantage over the previous employer.

"Companies need to inform people that 'we know you're going to a rival company and we know what files you've been looking at over the past few weeks'," said Perry, adding that a gentle reminder of legally-binding confidentiality agreements signed previously is often enough to dissuade a would-be data thief.

But this is all dependent on companies having to hand data about what employees have been looking at on the system – thus raising the need for closer monitoring.

Perry said: "You have to be able to find out what people have been doing on the network and you need to be able to find that out quickly."

According to Perry the responsibility for combating such fraud must be shouldered by IT, HR and security.

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business

Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business


  • Jobs
FX Emerging Markets Quant Developer (C++) - Vice president

FX Emerging Markets Quant Developer (C++) - Vice president Location: London Salary: VP Level Hire Company: McGregor Boyall Job type: Permanent ...

Graduate Executive Assistant

Excellent awareness of on-line tools for internal information sharing This role would function as an assistant to the Senior Vice President for our ...

Commodities Trading Project Manager

This is a Vice President level position reporting into one of the commodities Directors rolling out major pieces of work. You will be working hand in ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.





Quick Sitemap Links: