PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
June 2006

Ping: Don Ulsch

Don Ulsch, risk management director for audit services provider Jefferson Wells, says enterprises that treat physical and information security as separate disciplines are making a mistake. Critical controls, like background checks, must be integrated into a corporate security policy because they could impact IT. What mistakes are enterprises making when it comes to integrating physical and information security? I've seen cases where companies focus their background checks on the executive level and miss the relatively low-level employee who may end up with high-level access to critical information. This could be someone who takes the fingerprints of contractors, new employees and visitors, and enrolls them into the biometric ID system. Though that person is low-level, he is coming into receipt of a high number of private identifiers like a fingerprint. Whenever someone's enrolled, the fingerprint appears on the monitor before it's encrypted. The administrator can't print or e-mail that image and can't copy it into a Word ...

Access this PRO+ Content for Free!

By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Features in this issue

Columns in this issue