Exercise extreme caution when terminating employees with knowledge of your IT systems. More than eight in 10 IT security professionals admitted that, if laid off tomorrow, they’d take valuable and sensitive company information with them, according to a new Cyber-Ark Software survey of 300 IT pros.
The key targeted information: the CEO’s passwords, customer database, R&D plans, financial reports, M&A plans and, most important, the company’s list of privileged passwords.
“Most company directors are blissfully unaware of the administrative or privileged passwords that their IT staff has access to which allows them to see everything that is going on within the company,” says Udi Mokady, CEO of Cyber-Ark.
Advice: Routinely change passwords, especially after dismissing IT workers.
- React quickly to employee threats; don't be wedded to discipline policy
- Courts: Don't make us second-guess your decisions
- No matter how complicated the firing, have a rational explanation for decision
- Stop post-firing harassment suits by tracking and investigating every complaint
- ALL CAPS EMAIL? That's no credible threat