About
Safety of goods and people
IBM is of course the computer world but does not limit it, reminded us Gaƫtan Bikindou, IBM System Video Monitoring Team Leader. The company is also involved in the physical security of people and goods: video surveillance, protection against intrusion or access control devices which require more and more embedded computing and circulate information via networks.
IBM has invested particularly in the field of video surveillance, recently spent any analog to digital. The systems used have changed dramatically: analog cameras connected to switches and to monitors, we moved to a centralized management using a server and a single control console.
IBM invested in this sector with a complete package, offering, in addition to traditional options, the transmission of digital data storage, high availability, images, providing a mean operating time before failure of the order of tens of thousands hours. Suitable for all security issues, able to interconnect ATM or traceable to a repository, these solutions can be fully integrated into the IS of the company, a strong argument when contemplating a massive deployment
Security, Banking and Mobility
While it is difficult to quantify precisely the economic problems related to security, said Olivier Velin, Risk Manager Consultant at IBM, some statistics speak for themselves can give you an idea. According to the Gartner Group, for example, one minute of interruption of activity in a bank can cost 60 to 250 000.
It rests with the employees, as well as the ISD, data protection they convoient. Mobility increasingly important means they should be highly vigilant, whether at the level of discretion (train, restaurant) or protection against theft of their equipment.
In practice at risk, responsible of security issues: the USB key. The documents are properly protected if they remain on the job, but those protections disappear if we decide to transfer their personal computer.
The overall security policy of a company must look beyond issues of solutions, particularly in the context of mobility. "It does not implement mobility, it recreates the company around mobility," insisted Olivier Velin. An approach that involves structural choices and responsibility commitments. Some basic principles have emerged as the segmentation of access to information or the creation of directories dedicated to mobile employees.
In response to a question from a listener, Olivier Velin reminded what level ranged responsibilities. The ISD is responsible for the "good defense" of the workstation, but can in no way be blamed if the user has access to information that is not within its jurisdiction: this depends on the branch. In addition, the company has the duty to require security, liability and scope of audit by the providers it uses.