Factors CSOs need to consider when choosing a secure file transfer solution
Founded in 1994, Linoma Software is a global provider of enterprise software solutions that keep data secure at rest and in motion to help companies meet compliance regulations such as HIPAA, PCI DSS, SOX, GLBA and state privacy regulations. Our GoAnywhere suite is an on-site, browser-based managed file transfer solution for the enterprise that can be installed on almost any platform using FTPS, SFTP, HTTPS, AS2 communication protocols, and popular encryption standards such as Open PGP, GPG, AES and FIPS 140-2. Visit http://www.GoAnywhereMFT.com for more information or to download a free trial.
Info Security PG: How have the growing regulatory pressures affected organizations' ability to meet data security compliance requirements?
Robert Luebbe: While the threat of data breach has always loomed, increasingly stringent compliance regulations have made the consequences even more dire, with penalties, fines, and mandatory notifications that put companies directly in the public spotlight. In addition, each compliance regulation from HIPAA to PCI mandates specific policies and procedures, all of which requires the consistent attention of the CSO.
That’s what makes the idea of an automated solution so appealing to many organizations.
About Robert Luebbe
Bob Luebbe has worked in the IT field since 1985. During his career, he has worked in a wide variety of roles including software development, project management, consulting and architecting large-scale applications. Bob has been with Linoma Software since 1994 and is currently serving as the Chief Architect for its product line. His main focus for the last several years has been developing technologies to help organizations to streamline and manage file transfers, as well as to protect data at rest through encryption and key management.
Info Security PG: How do on-site data transfer solutions compare with cloud-based solutions?
Robert Luebbe: The big difference here is control. With a cloud solution, you store, exchange and manage data through a third-party. With an on-site solution like GoAnywhere, not only do you retain ownership and control of all of the data you’re responsible for, but you also get robust administrative features. You can easily control who has access to managed file transfer processes in GoAnywhere. Extensive auditing and reporting are also included in GoAnywhere to track who is exchanging which files, when and with whom, as well as what errors (if any) have occurred. By keeping possession of your data, you’re in a much better position to guarantee its security.
Info Security PG: With regard to data transfers, what vulnerabilities are most often overlooked that can expose organizations to data breach?
Robert Luebbe: Believe it or not, the biggest vulnerability organizations have is the type of security policies and procedures they’ve implemented, and the extent to which they require their employees to understand and adhere to that policy. Most of the data breaches that occur are due to employees unintentionally exposing data. That can happen if their laptops or mobile devices get lost or stolen, or if they’re using an unauthorized PC tool to FTP large files. Having a well-designed set of security policies is the first step.
The next key area relates to the technology being used to exchange files. Standard FTP may be easy, and it’s still popular, but it is definitely not secure. Staging files in the DMZ, or public-facing area of the network, for pick-up by trading partners is also risky since that is the most vulnerable segment of your network.
A third weakness in the security of an organization’s workflow management is relying too heavily on individual programmers to write manual scripts for file transfer projects. Programmers are busy and scripts are tedious, and having to write a new set of code every time a batch file transfer needs to happen is definitely error prone. That’s why simplifying and automating the process with an easy-to-use interface will greatly improve the quality of those transfers.
Company: Linoma Software
1409 Silver St., Ashland, NE 68003 U.S.A.
Founded in: 1994 CEO: Robert Luebbe Public or Private: Private Head Office in Country: Ashland, NE, USA Products: Linoma Software provides innovative software solutions for the enterprise to keep data secure at rest and in motion, helping organizations meet compliance regulations including HIPAA, PCI DSS, SOX, GLBA and state privacy laws. Company's Goals: Linoma Software is dedicated to research and development to provide innovative, comprehensive and cost-effective managed file transfer and file encryption software to organizations around the world. Equally important is our dedication to exceptional product support to ensure our customers can implement our products to meet their specific requirements.
JOIN NOW THE CYBER SECURITY WORLDWIDE COMMUNITY ON LINKEDIN