At Syncplicity, we are focused on providing secure, cloud-based file sync and share for enterprises of all sizes. Like the others in this market we cringe every time we read about hackers successfully penetrating corporate networks to access cloud accounts. It’s unfortunately a fact of life on the ‘net, but following some simple best practices can keep your files and folders safe.
The cloud is not to blame. Data breaches like the one recently reported with Dropbox have been happening in businesses for decades on their private networks, long before the cloud made its debut. Adding two-factor authentication using a secondary device like a mobile phone to verify users, as Dropbox did, is one solution. But it is better suited for consumers, not businesses. It does not give IT the control they need.
Security is not just about technology, but also about people and process. And one size does not fit all.
In a recent white paper, we identified 10 Questions to Ask Your Cloud Vendor about Security.
Here are just a few things businesses should do to protect files and folders in the cloud, all using native features in Syncplicity:
- Implement single sign-on (SSO) against a SAML or OpenID-based identity provider such as Active Directory/LDAP, Google Apps, or OneLogin
- Use 2-factor authentication approaches supported by your existing authentication infrastructure
- Take control of your passwords by implementing strong password policies, password expiration timeframes, and repeat use policies using your existing authentication infrastructure
- Implement centralized policies to control which devices — either computers or mobile devices — inside or outside your business may be used to access, sync and share files and folders
- Consider restricting access to accounts to only Domain-attached devices
- Set data retention policies, enabling shared files and folders to be automatically and permanently deleted from user devices when that information is un-shared or when an account is disabled
- Specify how long Syncplicity should retain previous version history and deleted files and set timeframes for automatically deleting them (this is a brand new feature we released in August!)
- Remote wipe any user’s account, their individual computers or mobile devices of all corporate files and folders if a user leaves the company or loses a device
- Use our new group management feature to easily grant, change, or revoke user and group access to shared content
From a technology perspective, you can rest easy knowing that Syncplicity utilizes data centers that have completed a SOC 1 audit under SSAE-16 guidelines (formerly SAS70 Type II), PCI DSS and many more certifications. We also encrypt every document with a different encryption key and store keys in a different data center from the file itself.
There is no point in doing any of this unless we make it easy for users to get their work done, but it’s critical that we keep business files safe. As an EMC company, we understand security – we live it, breathe it and help customers deploy it every day.
We think the winners in this market will both delight the end user with an engaging experience to access and share content on all their devices, while enabling IT to secure that content. There’s no other way.