What terrifies you the most as an IT leader when an employee isn't properly deprovisioned systems access after offboarding?

Security & GRC Threat & Vulnerability Management

The risk of leakage of sensitive data35%

The risk of a cybersecurity attack through an unmanaged account.53%

The risk of malicious data detection/theft10%

Other (comment below)

570 PARTICIPANTS

2.9k views1 Upvote3 Comments

Sort by:

CIO in Education3 years ago

Good question. They all worry me.

Director of IT in Healthcare and Biotech4 years ago

In addition to the security threat, the cost of unused licenses and unused resources like allocated storage, virtual machines, etc. is something that also needs to be considered with off-boarding. While the impact on a smaller organization may not be significant, for larger organization it does make an impact.
Also the fact that while there is a small probability value associated with security breeches due to unused accounts, the probability of the resource leakage is 1.

Director of Information Security in Energy and Utilities4 years ago

Most terrifying is having to spend countless time explaining to auditors what has happened, how it happened, and what you are doing about it to make sure it doesn't happen again. That is by far the biggest pain that you come across most frequently you fail to off-board folks properly. All others happen sometimes but not nearly frequently enough as being grilled by some audit folks who are happy to pick up on this easy find and grill you on it.

Content you might like

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

Do you have a lock out policy for system accounts? If so, how many attempts do you have it set too?

Have you considered not having a lock out policy where accounts are vaulted / rotated & standing access is removed?

Have you patched Log4j yet?

Yes42%

Yes, but third & Nth parties are still a concern43%

Mostly10%

No3%

Don't know

View Results

It's been announced that Windows 11 will be serviced on a monthly basis, similar to Windows 10's infamous "Patch Tuesdays". What's the ideal service cadence for this OS?

Updates should be released daily.6%

Updates should be released weekly61%

Updates should stay monthly.22%

Updates should be pushed quarterly.9%

Other (comment below)

View Results

As part of our NYSE IPO prep, we’re debating how to communicate our system hardening efforts in regulatory disclosures (e.g., SEC Form 20-F, SFC).

Would you recommend sharing % compliance (e.g., “85% CIS Tier 2”) or sticking to qualitative descriptions of how we identify and mitigate risks? Also, do SFC/ISO 27001 expectations require full ISMS integration, or is a % model acceptable?

What terrifies you the most as an IT leader when an employee isn't properly deprovisioned systems access after offboarding?

Sort by:

Content you might like

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

Do you have a lock out policy for system accounts? If so, how many attempts do you have it set too?

Have you considered not having a lock out policy where accounts are vaulted / rotated & standing access is removed?

Have you patched Log4j yet?

It's been announced that Windows 11 will be serviced on a monthly basis, similar to Windows 10's infamous "Patch Tuesdays". What's the ideal service cadence for this OS?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go

What terrifies you the most as an IT leader when an employee isn't properly deprovisioned systems access after offboarding?

Sort by:

Content you might like

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

Do you have a lock out policy for system accounts? If so, how many attempts do you have it set too? Have you considered not having a lock out policy where accounts are vaulted / rotated & standing access is removed?

Have you patched Log4j yet?

It's been announced that Windows 11 will be serviced on a monthly basis, similar to Windows 10's infamous "Patch Tuesdays". What's the ideal service cadence for this OS?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go

Do you have a lock out policy for system accounts? If so, how many attempts do you have it set too?

Have you considered not having a lock out policy where accounts are vaulted / rotated & standing access is removed?