Boosting the security of SaaS and web applications

The insider threat still looms large and the greatest financial loss to organisations with regard to data breaches is caused by insiders such as employees and contractors with out-of-date or excessive access rights to data. As the number of applications and data stores in use continues to expand, users must remember an ever-growing number of user name/password combinations, leading to poor password management by users which can compromise security. This paper discusses the need to place user-centric controls around data access and to use a combination of policy, technology and user education to protect against unauthorised use of devices and applications.

Free Download (subject to terms)