Your Guide to Effective Risk Management for ITAM Security

Share on linkedin
Share on facebook
Share on twitter
IT Asset Security with Multi-factor authentication

Loss of company assets and employee devices can be frustrating, but when missing or stolen devices appear on your company network, the situation can become scary.

If a hacker wants to access an open enterprise like a hospital from a parking lot over WiFi, then what better device than an authenticated laptop?

Multi-factor authentication is great at providing an added level of protection to your company’s operations and data without overly impacting ease for end users. If you aren’t careful, however, then lost and stolen assets can cause harm in your environment.

Multi-factor Authentication

Company-owned assets and approved employee devices are registered and authorized to access resources on the company network. This is the first level of security. If the device isn’t trusted, then someone can’t gain access.

The user then signs in to the device either using a type of biometric scanner (more secure) or, more often, using traditional passwords and PIN codes (less secure).

The user is only able to access company resources and data if he or she is using an authenticated device known and trusted on the company network. The strategy is that two levels of authentication provide security assurance – and they do most of the time.

Why You Are Vulnerable to Attack

The multi-factor authentication security protocol can be less secure in the case of a lost or stolen device.

If a would-be hacker is in close proximity to a building with Wi-Fi, then he or she can potentially gain open access to the company’s IT environment. There is still the challenge of obtaining the user’s password or PIN, but most hackers have determined how to overcome those barriers.

When your employees are not in possession and control of an authenticated device, you must take critical steps.

4 Steps to Manage Risk and Protect Your Company’s Resources

There are 4 actions every company should take to manage the risk of lost and stolen assets returning to your IT environment and becoming a security vulnerability.

  1. Ensure operating systems are updated and security features enabled along with conducting frequent inventories of device configurations.
  2. Turning on remote security and administrative functions can enable company administrators to access lost/stolen devices, lock them and, if necessary, delete sensitive information before it can be used to cause the company harm.
  3. Establish a policy and process for reporting lost and stolen devices to the company administrator. This will allow them to be blocked from accessing company resources. You must also have a process for unblocking the device if it is recovered.
  4. Monitor for blocked devices trying to access network resources. You may have blocked a single device, but hackers tend not to quit easily and will likely try again in hopes of being lucky. As the intruder has to be located in physical proximity to a building with WiFi, building/parking lot security cameras can possibly help ID the intruder, so law enforcement is able to apprehend them.

Effective monitoring requires the right tool-set to help your network administrators and security staff identify potential risks and act quickly.

IT Discovery and visualization capabilities like those found in Virima can help make this process easy and dependable. Lost and stolen assets certainly frustrate end-users, but when those assets return in the hands of a hacker, the situation has just become scary.

The ability to monitor configurations of most common operating systems, correlate data with loss prevention databases and network configuration tools help provide your staff with a complete monitoring picture. To learn more about how Virima will help your company manage IT risk, download our IT asset security circle white paper here.

Virima is here to help. To get started, contact us today to schedule a demo and explore the possibilities!

Share on linkedin
Share on facebook
Share on twitter

Subscribe to Our Newsletter

More to Explore

IT Operations Management (ITOM) refers to the administration of technology and application requirements within an IT organization. Under the ITIL framework, ITOM’s objective is to monitor, control, and execute the routine tasks necessary to support an organization’s IT infrastructure.(Also, see…

CMDB service maps are visual depictions of hierarchical relationships among business services (sometimes also major applications) and their supporting Configuration Items (CIs). Because service maps can provide an instant bird’s eye view of critical dependencies and relationships, their utility lies…

Understanding the Configuration Management Database (CMDB) and its core functions is a critical aspect of service management. The CMDB forms the hub of numerous service management practices and provides a means of correlation needed to deliver business services successfully.   The…

Introduction  IT Asset Management (ITAM) and inventory management are both useful practices that can benefit any organization using IT. Both of these practices are concerned with the management of IT assets but focus on different things. Inventory management can exist…

IT Asset Management (ITAM) and configuration management are both useful practices that can benefit any organization using IT. Both of these practices are concerned with the management of IT assets, but focus on different things.Configuration management can exist without IT…

Some people think that an IT service desk is the same thing as an IT help desk. It isn't, as I'm going to explain. Sure, there are some similarities, but there are also many differences. Let's start by exploring what…

To understand the business value of service mapping, it’s important to shift to a service delivery mindset, rather than thinking about delivering infrastructure, equipment, software, and applications. Defining services is relatively simple if thought of as the commoditization of what’s…

Business service mapping – the area of configuration management that perplexes so many IT professionals, yet that which provides the highest value in Configuration Management Database (CMDB) projects. There are several major reasons IT gets stopped when it comes to…

The world of ITSM has changed as technology has shifted from providing tools for administrative support to being fully embedded in the delivery of the business’ core function.  There’s a world of difference between using an accounts payable system to…

The Configuration Management Database (CMDB) provides a single database that contains information about the enterprise’s assets, both logical and physical. In modern service management platforms, it provides core functionality that is referenced by all of the service management practices, including…