Thank you for Subscribing to Apac CIO Outlook Weekly Brief
Editor's Pick (1 - 4 of 8)
Cybersecurity - On the Front Line
By Andrew Smith, Director of Computer Forensics Services, Orion Investigations Co., Ltd
• Train your staff that whenever they use a public WIFI that they do so using a virtual private network (VPN). This will keep their network traffic secure. These simple tips could save your company from suffering a large financial loss. In order to help prevent theft of company data consider the following points: • Review which staff actually need the ability to connect USB devices to their company computer and restrict those that don’t • Don’t allow staff to use their personal mobile phones for company business • Don’t allow staff to use their personal email accounts for company business In addition to the above tips, review your internal processes to make sure there is oversight for staff at all levels. Consider providing training to all staff on the latest cybersecurity threats such as phishing emails and ransomware. When something does go wrong, management will naturally turn to their IT staff to begin an investigation and collect potential evidence. However, consider the following points: • Usually the IT staff have not been trained in how to conduct a methodical investigation • They are often unaware of the need to maintain a complete chain of custody from the collection of data stage through to producing a report • Are unaware of all the potential sources of evidence • Lack the specialist tools required to conduct a forensic investigation • Lack experience in correctly interpreting the findings of the investigation • Lack experience in preparing evidence and professional reports for court • Inexperienced at presenting digital evidence at court as an expert witness Companies often assume as long as the person conducting the investigation holds some type of IT qualification than this will be sufficient. Digital forensics is a highly specialized field and, as demonstrated by the points above, requires a forensic investigator with the appropriate qualifications and experience to conduct the forensic investigation. Another important issue to consider is the experience of your legal team. Do they have experience of dealing with cyber-crime cases and do they have the technical understanding of digital evidence? Due to the potential complexity of cyber-crime cases the legal team will often have to work closely with the forensic investigator to ensure the best possible outcome in any legal proceedings. Without doubt, the number of legal cases using electronic evidence will continue to grow. Also, as the number of forensic specialists in Thailand increases, we can expect to see electronic evidence that has not been handled correctly to be more robustly challenged in the court. If you are involved in legal proceedings where the other side is presenting digital evidence, you should consider hiring your own forensic expert to examine the validity of their evidence. In order to give yourself the best chance of success in any legal proceedings, make sure you use suitably trained forensic investigators and lawyers with the experience of dealing with electronic evidence.