It seems that the data security landscape is constantly changing. Every day, new threats arise and fresh best practices emerge to keep companies at the forefront of protecting sensitive information. PKWARE’s staff of experts in data security share their thoughts in our blog, highlighting the most current topics on data security, management, and reduction. Check back frequently and join the conversation.

Dropbox Presents Many Challenges for Enterprise Data Security

Posted by on in Bring Your Own Device (BYOD)

The rise of bring-your-own-device (BYOD) policies and the proliferation of mobile networks have created new information sharing needs within the enterprise. More businesses are looking for solutions that will allow them to share company data files with employees across an array of devices and networks. The emergence of cloud storage tools - in particular, Dropbox, has been immensely helpful in facilitating access to critical data files across the enterprise, regardless of the user's location or device.

Data faces exposure in the cloud
However, the service has not been without some major data security concerns. According to InformationWeek, within the past year, Dropbox was the victim of a penetrating network breach that exposed customers' personal information. That incident put a number of users at risk for identity theft or fraud. The potential danger presented to enterprises, however, is far greater. One of the major concerns with cloud services is the possibility of losing control of important data. For instance, employees could upload sensitive company information to a vendor's server without the oversight of the CIO or IT department. Although Dropbox has instituted controls that determine user access and provides file-monitoring capabilities, these fears persist.

Addressing the challenges of cloud security
TechTarget recently addressed those concerns, confirming that whenever companies allow a third-party vendor to host their information, there will be the possibility of that data becoming compromised or exposed. The source recommended that CIOs have a comprehensive cybersecurity plan in place that directly addresses the challenges of cloud data storage. Industry or government regulations may actually prevent the use of cloud services for the purposes of sharing files across the enterprise, so that possibility also needs to be taken into consideration. One aspect of the Dropbox service agreement that should be noted by prospective customers is that the provider is not responsible for encrypting data, meaning it is the duty of the CIO to implement those measures.

Ultimately, businesses need to weigh the increased access and flexibility of cloud storage solutions with inherent data security challenges they present. However, if a company chooses to employ the services of a cloud provider such as Dropbox to facilitate information sharing across the enterprise, IT members should consider integrating additional security protocols to protect sensitive data stored in the cloud. A comprehensive data encryption software solution is an essential component of any worthwhile effort to secure company files. If a hacker infiltrates a cloud provider's network and access its servers, encryption tools may be the only things standing in the way of sensitive enterprise data becoming exposed. 

Tagged in: Bring Your Own Device (BYOD) Cloud cybersecurity Data Security Dropbox Encryption Hacker

Comments

  • No comments made yet. Be the first to submit a comment

Leave your comment

Guest Wednesday, 02 October 2013