Egos is a catalogue sales company it is quite a small company with 50 staff users, all connecting to the same network with no login to that network. This could cause some problems with anyone logging into the network and accessing their personal information, this could be easy with no security protection. It is recommended to use a login to a local network. All of the 50 users can install ( viruses/key loggers/Trojans ) and remove/steal any software, with the Internet access being unrestricted to all users. It is recommended to enable restricted Internet access. The downloads onto the network are not monitored, so if anyone can download software it may lead to a security threat. is recommended to have someone monitoring the downloads. The IP address log is not kept of websites that were visited. So if anything was download it would be almost imposable to know where it was downloaded from. I would be recommended to keep IP address from visited websites. Without a firewall this problem could lead to virus access. It is recommended to download a firewall, or even use the windows firewall. The company backs up all the data once a month, this is not enough, it would be recommended to backup data several times a week. There are data tapes that are kept in a locked plastic box. The box is placed on top of the server, this is bad as the heat from the sever could melt the plastic box and the data tapes will be vulnerable. The plastic box should be moved somewhere safe. The emails are available to everyone, so someone can read personal emails related to the company without anyone knowing. It is recommended to lock emails to private so only important people can read the emails. The entrance to the company does not have locked doors and not protected with keypad. This means anyone could walk into the company and login. It is recommended to have keypad protection on doors. |  |
 | The company keeps a database record of all costumer's details, such as bank details, purchases and customer names and addresses. This could be a problem as anyone can access and copy this information easily. Purchase history and account numbers can also be accessed by anyone. This information was being discussed between other suppliers. Furthermore on more than one occasion the manager also heard the staff providing address information to others over the telephone. It would be recommended to limit the access to personal information about customers. It is important to keep data secure and safe with a firewall and anti-virus to protect your information from viruses and malware/spyware. Without this is could be easy for any viruses to corrupt the companies information and work on their hard disk drives. This business can also protect their computer by the "Data Protection Act". This United Kingdom Act of Parliament which defines UK law on the processing of data on individual living people. The company should think about the Data Protection Act and the Computer Misuse Act. |
