Upload File

[webinar slides] 4 ways to protect your captured data from theft and compliance violations

  • Home
  • Technology
  • [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations
33
Underwri(en by: Presented by: Brousseau & Assoc. The Global Community of Informa4on Professionals Webinar Title Presented DATE 4 Ways to Protect Your Captured Data from The@ and Compliance Viola4ons An AIIM Webinar delivered on January 20, 2016

Upload: aiim

Post on 16-Apr-2017

8.327 views

Category:

Technology


3 download

Report

TRANSCRIPT

Page 1: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

#AIIMTheGlobalCommunityofInforma4onProfessionals

WebinarTitle

PresentedDATE

4WaystoProtectYourCapturedDatafromThe@andComplianceViola4ons

AnAIIMWebinardeliveredonJanuary20,2016

Page 2: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Today’sSpeakers

MarkBrousseauPresidentBrousseau&Associates

Host:TheresaResekDirectorAIIM

Page 3: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

WhyWeAreHere

The2015securityandcompliancewake-upcall:§  Massivedataleaks§  LostpaJentrecords§  Espionage

Page 4: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

TheImpactofDataLeaks

§  60%oforganizaJonssaythepotenJalimpactofadataleakwouldbehigh

§  13%oforganizaJonssaythepotenJalimpactofadataleakwouldbedisastrous

Source:AIIM

Page 5: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

AverageCostofaDataLeak

$7.2MILLIONSource:PonemonInsJtute

Increasingregula-onsandstandardsareraisingthestakes.

Page 6: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

What’sAtRisk

§  CustomerinformaJon§  Intellectualproperty§  Financialrecords§  Projectdocuments

Page 7: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Organiza4onsUnderstandtheStakes

§  67%oforganizaJonsseeensuringtheprivacyofcustomerdataasessenJal.

§  65%oforganizaJonsseecompliancewithindustryandgov’tregsasessenJal.

Source:AIIM

Page 8: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

IncreasingRegulatoryPressure

14,000

Federal,stateandindustrylaws,standards

andregulaJonsgoverningthemanagementofinformaJon.

Source:CadenceGroup

Page 9: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

ExamplesofKeyDataGovernanceRegula4ons

§  HealthInsurancePortabilityandAccountabilityAct(HIPAA)§  PaymentCardIndustryDataSecurityStandard(PCI-DSS)§  FederalInformaJonSecurityandManagementAct(FISMA)§  BankSecrecyAct(BSA)§  Gramm-Leach-BlileyAct(GLBA)§  Sarbanes-Oxley(SOX)§  DefenseInformaJonSystemsAgency(DISA)

Page 10: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

HowOrganiza4onsareProtec4ngThemselves

49%oforganizaJonsbelieveunauthorizedaccessbyinternalstaffposesthebiggestthreattotheirdata.§  Permissionsandaccesscontrols§  AnJ-virus/malwaretools§  Strongpasswords§  Perimetersecurity

Page 11: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

TheAchillesHeel:DocumentImagingSystems

AtypicaldocumentimagingsystemcancreateFOUR

vulnerabiliJesthatincreasethepotenJalfordatathe@andviola4onsofinformaJonmanagementregulaJons.

Page 12: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#1:PryingEyes

NoencrypJonwhiledataisinmoJonandnoprotecJonforimagesordataastheytravelthroughthecaptureworkflow.

Page 13: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#1:PryingEyes

MostdocumentimagingsystemshavenotmadetheleaptofulldiskencrypJon.

Page 14: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#1:PryingEyes

OperatorshavenetworkorfilesystemrightstothelocaJonwhereimagesarewri(en.

Page 15: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#1:PryingEyes

Imagesarewri(entothescanner’slocalharddriveprior

towriJngthedatatoanetworkfilerepository.

Page 16: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#2:LogFilesLe@Unsecured

Mostdocumentimaging

systemswritebatchlogfilestothelocalharddriveofthe

scanner’shostPC.

Page 17: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#2:LogFilesLe@Unsecured

LogfilesmaycontainPersonalInformaJon(PI)orPersonalHealthInformaJon(PHI)suchascheck

MICRinformaJonorOCR/ICRresultsfrommedicalforms.

Page 18: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#3:PoorVisibilityintoOperatorAc4vi4es

DifficultytrackingandaudiJngtheacJviJesofoperaJonal

staff.

Page 19: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Risk#4:PoorSecurityManagement

Mostdocumentimagingsystemsrequiremanualprocessesfornetworkadministratorstoreview

securityseings.

Page 20: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

ELIMINATETHESERISKSHOWADVANCEDDOCUMENTIMAGINGSYSTEMS

Page 21: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#1:“Impersona4on”

Dataiswri(entoadifferentuseraccountthantheone

usedbythescanneroperator.

Page 22: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#2:ProtectedImagesandData

StrongencrypJonalgorithmsthatdonotimpactsystem

performance.

Page 23: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#2:ProtectedImagesandData

UseofInternetProtocolSecurity(IPSec)tunnelsto

encryptdatathatisinmoJon.

Page 24: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#2:ProtectedImagesandData

Temporaryimagesarestoredonlyinmemorypriortobeingwri(entothenetworkstore.

Page 25: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#3:SecureAuditLogging

Detailedauditloggingtoacustomer’ssyslogserver.

Page 26: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#3:SecureAuditLogging

Batchlogfilesarewri(endirectlytoauser’snetwork,insteadoftoalocaldrive.

Page 27: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#3:SecureAuditLogging

NosensiJveinformaJonisincludedinlogfiles.

Page 28: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Safeguard#4:StrongSecurityManagement

AsecuritycontrolpanelthatprovidesinsightsandeasycontrolofconfiguraJons.

Page 29: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

Summary

§  Securityandcomplianceisonthecorporateagenda§  OrganizaJonsknowtheymustworkhardertoprotectcontent§  MostscanningsystemscreateFOURvulnerabiliJes§  Advancedcapturesystemseliminatetheseissueswhile

aligningdocumentprocessingwithcorporatesecuritygoals

Page 30: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

ibml

ibmlprovidesintelligentinformaJoncapturesoluJonsthatdrivebusinessprocessimprovements.Combiningintelligentscanners,somwareandservices,ibml’scomprehensivesoluJonsautomatethemostdemandingdocumentapplicaJonsinbanking,financialservices,healthcare,governmentservices,outsourcingandmore.Everyday,ibmlcustomersin48countriesrelyonourtechnologytoaccurately,efficientlyandsecurelycaptureandprocessmillionsofdocuments.Learnmoreatwww.ibml.com

http://www.ibml.com
Page 31: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

SecureDocumentCaptureSolu4ons

FormoreinformaJon,emailDanLucariniat

[email protected]

Page 32: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

#AIIMTheGlobalCommunityofInforma4onProfessionals

TakeyourskillstothenextlevelbylearningbestpracJcesandtechnologiesfordigitalimagingwithAIIM’sCapture&Imagingtrainingcourse.

Visit:AIIM.org/CaptureTraining

http://www.aiim.org/Training/Certificate-Courses/Capture-and-Imaging
http://www.aiim.org/Training/Certificate-Courses/Capture-and-Imaging
Page 33: [Webinar Slides] 4 Ways to Protect Your Captured Data from Theft and Compliance Violations

Underwri(enby: Presentedby: Brousseau&Assoc.

AIIMistheCommunityforInforma4onProfessionals

AIIMbelievesthatinforma4onisyourmostimportantasset–learntheskillstomanageit.

Ourmissionistoimprove

organizaJonalperformancebyempoweringacommunityofleaderscommi(edtoinformaJon-driven

innovaJon.

Learnmoreatwww.aiim.org

http://www.aiim.org

The City of Milpitas · The City of Milpitas (“the City”) is requesting proposals from experienced and qualified consulting ... theft, ethics violations, or other possible misconduct

Anti-Theft Anti-Theft - Passive Anti-Theft System (PATS

Federal Bureau of Investigation. What is the FBI? Investigates violations of federal law including the theft of federal funds Investigates violations

Wage Theft and Workplace Violations in Los Angeles...DOLLARS LOST TO WAGE THEFT IN LOS ANGELES The various forms of nonpayment and underpayment of wages take a heavy monetary toll

Identity Theft Repair Kit - Stop Fraud Colorado Theft... · Identity Theft Repair Kit 1. ... They have a search warrant. They inform ... What is Identity Theft? Identity theft occurs

NYC VIOLATIONS COMPLIANCE GUIDEgo.sitecompli.com/rs/665-YWM-355/images/SiteCompli NYC...NYC Violations Compliance Guide 2016 1 NYC VIOLATIONS GUIDECOMPLIANCE The Most Common Violations

studentaid.ed.gov · Record Retention: Program records ... that the Federal Bureau of Investigation ... burglary, motor vehicle theft, arson, arrests for liquor law violations, drug

"Art as Theft/Theft as Art: Using Imitation

NEBRASKA JUVENILE DIVERSION PROGRAMS€¦ · Courts and the Nebraska Supreme Court, to ensure that we captured accurate information on new law violations. We examined rates of recidivism

Captured Memories Business Plan - Web viewCAPTURED MEMORIES BUSINESS PLAN14. CAPTURED MEMORIES BUSINESS PLAN2. Captured Memories Business Plan. Edward M Kuligowski. ... Captured Memories

Captured Moments

 · Web viewStudents will be held accountable for, or should report, the following violations while on campus or clinical property: Theft of, or deliberate destruction, damage, misuse

182 AGENTS AND IDENTITY THEFT - ceclass.com · AGENTS AND IDENTITY THEFT 182 What is Identity Theft, 4 Identity Theft & Insurance, 17 Agents & Identity Thefts, 33 Identity Theft Insurance,

ZoneOffenseDayNight 1 BURGLARY - RESIDENCE1 BURGLARY - THEFT FROM AUTO21 THEFT - BICYCLE 1 THEFT - PETIT1 THEFT - VEHICLE AUTO1

CRZ Violations

QA Violations

Captured Forever

7.23.20 Final Recommendation - Bullock Armmand · 4-10-.02 General Work Rules (2) Serious violations, (c) Theft or the unauthorized possession of agency property.3 Counsel for ABC

Topic 13 Theft Topic 13 Theft. Topic 13 Theft Definition ‘Theft’ is defined in s.1 of the Theft Act 1968: ‘A person is guilty of theft if he dishonestly

Theft act 1968- theft, robbery and burglary

City of New Buffalo 224 W. Buffalo Street New Buffalo MI ...assaults, 7 accidents, 15 ordinance violations, 8 traffic arrests, 11 theft/larceny, 3 abandoned vehicles, and 9 alarms

COMPLIANCE HOTLINE · 2020-03-10 · • Medicare/Medicaid fraud and abuse • HIPAA violations • On-the-job drug or alcohol abuse • Harassment or discrimination • Theft and

Captured fb

Guzoo Violations

Internal Theft Awareness Webinar. Preventing Internal Theft

Wireless Power Theft Monitering - · PDF fileWireless Power Theft Monitoring ... coming, then it indicates power theft. So microcontroller ... Wireless Power Theft Monitering

Ethical violations

Captured Online

Stormwater Stormwater Violations Violations Stormwater Violations Violations Elements, Evidence, ... Photos Samples Test ... If you don’t have all the evidence you need,

Deterring Wage Theft: Alt-Labor, State Politics, and …djg249/Galvin...wage laws are not the most common or expensive type of wage theft (overtime violations are), but they are widespread

CAPTURED Treatment

Integrity Violations Definitions - Tamil...Title: Integrity Violations Definitions - Tamil Author: ADB Subject: integrity violations Keywords: integrity violations, anticorruption,

Reducing Internal Theft 2deterring employee theft

Traffic Enforcement. Categories of Violations Infractions Misdemeanors Felonies Document Violations Equipment Violations Moving Violations

Detecting Re-captured Videos using Shot-Based Photo ...hklee.kaist.ac.kr/publications/2011_IWDW(with_Dae-Jin_Jung)-Pre_Version.pdf · 2 Dae-Jin Jung et al. camcorder theft causes