There are many news that we can read in some media related to security incidents in which theft or theft of confidential information occurs. This has very serious consequences, not only economically or legally, with fines or sanctions for non-compliance with data protection legislation; but in terms of image and loss of reputation, loss of customers, etc. Building an image and reputation requires a lot of effort and work, but losing all this work in the face of this type of incident is very easy and, what is worse, very difficult to rebuild.
These types of problems have always existed in companies, but with the use of new technologies, the processing and storage of large volumes of data, the impact of a leak is much greater. On the other hand, we find that with the increase in the use of mobile devices, both corporate and personal, to access company resources, it poses an added risk to the security of our information.
Information leakage can occur accidentally: loss of a laptop, sending information by mistake, etc. But it can also be an incident caused, for example by the discontent of an employee who leaks information, or through other techniques, such as attacks carried out by cybercriminals through social engineering, which have led to the theft of information to damage the reputation of the company or for economic purposes
To prevent this type of problem with guarantee, we must take into account the type and value of the information to be protected, taking into account the possible impact that its theft or loss may cause in our business, since it can have different consequences depending on the type of information and type of organization. Therefore, we should always:
