contact us

+44 (0)845 52 000 85

excellence as standard

How Easy is it for an Employee to Steal Data?

Many organisations have deployed DLP solutions to help protect corporate data. These types of solutions may run on the workstation or laptop, or alternatively on a server or at the network perimeter.

How well do these DLP solutions work? Would it be possible for an employee to steal or copy sensitive data to locations outside of the organisation?

Nettitude’s Internal Penetration Testing offering is designed to address these types of business questions. Our team of consultants will first identify what types of data you house and what types of data you deem to be sensitive. We will then identify exit points within your environment, where an employee could look to remove that sensitive data.

Typical Exist Points might include

  • Ability to print data
  • Ability to mail data out of the environment
  • Ability to copy data to USB, Flash, Network Device
  • Ability to upload data out of the environment through HTTP, FTP, SFTP etc.
  • Ability to export data to CSV format
  • Ability to encode/encrypt data and then remove from the environment

Nettitude has a range of security tests that can help you understand whether a trusted user could copy, move or delete sensitive data from your environment. To find out about these, and Nettitude’s other Penetration Testing offerings, please complete our contact form and a consultant will respond to your enquiry.