Re: IT & Confidential Data

Edward Cowling London UK wrote:
In message <5pcg625dn6504d3codm682kg9h8cut0bgk@xxxxxxx>, Peter Saxton <peter@xxxxxxxxxxxxxxxxx> writes

Has anyone managed to have a good IT dept that is kept away from
sensitive data? And if so can you give a few pointers on how ?

Why don't you do payroll and other confidential stuff on a standalone
machine?


I think in the end I'm just going to have to define the IT responsibility as providing a network connection, email and internet and printing. But clearly define accounting software installed on a PC as being the responsibility of the accounts dept. As you say a stand alone payroll seems a good idea.

I can see a problem though if you get a non PC literate accountant, and sadly there are still loads about :-)



You really need to let your IT manager have control over the configuration of all aspects of all the business computers. This would need to include all the accounts info, your personal email etc. You should then tell him that there are certain areas of the system that you would like him to lock himself out of. This might be your personal email (access only for you), and the accounts dept's confidential data (access only for you and the accountant perhaps).

He will then set up the system as required using an administrator account and grant everyone the privileges as agreed. He will then provide you with the administrator access info and instructions for how to change the password. You change the password(s) and keep them in a safe place.

He could (of course) lie to you and circumvent the whole procedure, but this can be guarded against (if necessary) by bringing in external staff from a reputable company to check his work.

I have yet to meet someone doing a network admin's job who would have a problem with the above.

HTH, John
.

Relevant Pages

  • Re: OT: If You Are Using Dropbox...
    ... they did send out a letter to anyone that had accessed their accounts ... I don't keep sensitive data in plain text/html or any other ... Use a strong secure password to save the data, ... single exe file that de-encrypts itself when you type the correct ...
    (alt.sports.basketball.nba.la-lakers)
  • Re: OT: If You Are Using Dropbox...
    ... they did send out a letter to anyone that had accessed their accounts ... I don't keep sensitive data in plain text/html or any other ... Use a strong secure password to save the data, ...
    (alt.sports.basketball.nba.la-lakers)
  • Re: Does anyone know if I can use different categories with different.
    ... > work Microsoft Exchange email from home. ... > personal email from the ones I use for my work email. ... arrive through different accounts, like different POP3 servers or one is ...
    (microsoft.public.outlook.general)
  • Detect Users Forwarding From Their Personal SMTP Accounts?
    ... forward email from one of their personal email accounts to our company ... I'd like to discourage them from using a forwarding tool like this, ... seem to get plenty of detected viruses in emails directed to our domain ...
    (microsoft.public.exchange.admin)
  • Re: Addin to make Outlook reliably be used for 2 servers?
    ... >with at least five different accounts, some of which I use for sending only, ... I use Outlook 2000 and it ... >> 2 so that I'd find I'd be sending mail under my personal email address ... Is there an addin that will allow me to perhaps be ...
    (microsoft.public.outlook.program_addins)