[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

IT Security Issues

Posted on 2013-05-13
6
Medium Priority
?
220 Views
Last Modified: 2013-05-29
I would like to know if anyone has ever had to try to secure a network in which the users were very poorly educated.  I'm not talking rhetorically but realistically.  

I manage the network for a medium-sized, privately-owned manufacturing company.  That company hires the cheapest employees they can for their manufacturing positions.  Most of those employees are poorly educated (6th - 8th grade) and most of them speak Spanish, Vietnamese, or one of several African dialects.  I am struggling for a way to effectively communicate network security when I can barely communicate with these employees.  Management supports my efforts to tighten security up to but not including making an example of an offending employee.  As a result, I do seemingly endless counseling sessions where I see a lot of bobbing heads and hear a lot of affirmatives (in various languages) but see just as many blank stares.

If you have experience with this type of situation I would like to hear your recommendations.  Insights such as "fire the offenders", while reasonable, is not workable in our environment.
0
Comment
Question by:gspearman
  • 3
  • 2
6 Comments
 
LVL 10

Accepted Solution

by:
ienaxxx earned 600 total points
ID: 39161730
Very strong GPOs (like disable all removable storage and CD/DVD) and restricted internet browsing is not enough?

With GPOs you can even disable the single entries in the start menus and have a pc act more like a thin client... If you start looking at GPOs to block softwares and settings and you have users as they should be: only users of their computers, there should be no security issues...

The initial administrative effort will be truly big, but once done things are going to adjust by a single reasonable request at time.

So a proxy (like MS TMG 2010) that blocks all internet sites except work ones and GPOs will do the trick, IMHO.

HTH.
Bye!
0
 
LVL 17

Assisted Solution

by:surbabu140977
surbabu140977 earned 900 total points
ID: 39163119
Networks are only as secure as their weakest point.

windows domain--> strict policy--> no user rights--> usb's/dvd's locked up from setup--->no exe/program execution rights--->no driver installation rights---> enforcing proxy---> a standard firewall....... should do well.

In short, just open up what they require. Rest is blocked.
0
 

Author Comment

by:gspearman
ID: 39164613
Gotcha on the GPOs.  What about leaving a PC unlocked?  Secure that with a screensaver timeout?
0
Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

 
LVL 17

Assisted Solution

by:surbabu140977
surbabu140977 earned 900 total points
ID: 39164661
Window's group policy will take care of locking. It can get locked after a predefined time of inactivity and users will not be able to control/change that.

If you configure group policies right,  it will let the user see and do what you want them to see and do.

Best,
0
 

Author Comment

by:gspearman
ID: 39164864
Any thoughts on the language barriers?  I've thought of having IT policies translated into the different dialects but the end users might not understand them, I couldn't translate them verbally, and HR wouldn't enforce them.
0
 
LVL 17

Expert Comment

by:surbabu140977
ID: 39165793
No idea about that. It's a kind of dead end considering the literacy of the users........
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Read about achieving the basic levels of HRIS security in the workplace.
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses
Course of the Month20 days, 12 hours left to enroll

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question