• open panel
  • Home
  • Posts Tagged'secure file transfer'

Posts Tagged ‘secure file transfer’

Five things every business manager should know about file sharing practices

A blog written by Jeff Whitney, vice president of marketing for Ipswitch File Transfer

Businesses face a real threat – their employees. That’s right, increasingly tech-savvy employees have turned to a diverse range of file transfer tools that are beyond the sight of IT management.

Employee File Sharing FactsEmployees see webmail, file sharing services, cloud storage, USB sticks and smart devices as easier to use than traditional corporate tools to transfer files. But this trend ignores the security risks and regulatory implications of using file transfer methods entirely outside of corporate control.

Here’s five things you should know about your employees’ habits and the need for secure file transfer technology:

1. Insecure means are used to send confidential files.  Recent surveys we have run to monitor user behaviour found that a vast majority (84%) of respondents send classified or confidential information through corporate email attachments. Of those, 72% do this at least weekly and 52% daily. That means employees are using unsanctioned tools in record numbers, resulting in a lack of visibility and control.

2. Many employees use personal email to send company documents and data.  Users may think they can’t afford delays or slowdowns associated with jumping through perceived hoops to send out information and files that keep business humming. And if the business doesn’t provide the tools they need to send large and confidential attachments, or if the processes and technologies are too difficult to use, then users will take matters into their own hands – and their own email.

3. Employees are using consumer-grade file transfer services for business purposes.  If the corporate email system limits the size of file attachments or if IT vetoes service requests, resourceful employees don’t throw up their hands in resignation: they look for workarounds. And the growing popularity of file transfer sites and cloud services aimed at consumers is making it easier for business users to sidestep IT. More than half of the users we surveyed admitted they use these services.

4. Risk of data theft is high.  When business users aren’t turning to personal email accounts or free file-sharing services, they may be putting files on USB thumb drives, smartphones or other external devices. Unfortunately, our market research shows that almost one-third of users had lost a USB device, smartphone or other external device containing business or personal information – a tremendous risk for any organisation.

5. IT Management Visibility into Data Management is Low, Putting Businesses at Risk.  Most companies create and maintain policies that mandate the use of approved tools for moving and sharing information. However, our research shows fewer than 32% strictly enforce these policies, making these mandates largely meaningless. No visibility means no compliance with internal policies or external regulations and laws.

The file sharing habits of employees can be risky but is driven by their desire to get work done. The business need and IT desire to control file sharing is equally important. Fortunately, companies don’t have to choose between risky behaviour and productivity. Using secure file transfer technology, employees can get the convenience, ease-of-use, and speed they need while IT and the business get the control, visibility, security and compliance they need.

Click here to download a free report, published by Ipswitch File Transfer that provides insights into causes and trends in risky data and file sharing, ways in which IT has fallen behind in safeguarding information, plus the associated dangers and proven means to safeguard corporate data without impeding user productivity.

Pro2col are a certified Ipswitch File Transfer Elite Reseller and have been working with Ipswitch since 2010 to supply, deploy and support their range of managed file transfer solutions to UK businesses.  If you like more information on secure managed file transfer, don’t hesitate to contact us.

 

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Socitm 2012: Managed File Transfer for Councils

We’ve been working closely with councils throughout the UK to simplify, secure and streamline their file transfer, so we couldn’t miss the opportunity to attend Socitm 2012; the No. 1 UK ICT event for councils.  The conference has kicked off today (here’s a breakdown of the programme) and the Pro2col team are ready and waiting to share the knowledge and experience that we have gained from working with councils to secure person-to-person file transfers and automate the movement of sensitive data into and out of the organisation.

Pro2col Managed File Transfer at Socitm 2012

On a similar note, this is the ideal moment to publically release our lastest e-book: The Council’s Guide to Secure Managed File Transfer, which is now available for download.  It covers a range of issues surrounding the secure movement within councils including:

  • How to eliminate the problems caused when employees resort to insecure, non-compliant file transfer methods such as email.
  • Ensuring you meet with UK data security and compliance legislation including The Data Protection Act and PCI DSS.
  • Providing your employees with a quick and simple way to send and receive sensitive files both internally and with third parties.
  • Automating the transfer of files, saving time and money.
  • How to regain control over file transfer processes and user access.

If you’re at the conference and would like to speak to one of our managed file transfer experts, drop by stand 8 (piccy attached) – we’re always happy to help.  If you’ve not been able to make it this year and you’d like to talk to us, please don’t hesitate to get in touch with the office on 0333 123 1240.

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Managed File Transfer is for SMB’s too

Recent research suggests that the SMB sector is coming under an increasing number of cyber attacks from hackers and cyber criminals.  Figures published by Symantec revealed that the number of attacks on companies with fewer than 250 staff had doubled in the six months to June 2012.  Similarly AVG reported that it was predicting an increase on the £3.37 million of damage inflicted on UK SMB’s last year.  Verizon confirmed that the majority of 855 data breaches analysed in their Data Breach Investigation Report had been inflicted upon SMB’s.

The question is; why are SMB’s being targeted?  It would appear that the modest budgets available to small companies make them easier targets, Small Businessgiventhe lower level of expenditure on information security technologies.  Especially since SMB’s frequently work as suppliers for larger organisations, making them a more attractive proposition to hackers than the more conventional direct attack on the corporate target.

What does this have to do with managed file transfer I hear you ask?  MFT has generally been considered a technology more appropriate to corporate organisation’s – with its big price tag and grand title.  Times are changing for the MFT marketplace and there are now some very comprehensive solutions available at really competitive prices.  For those SMB’s considering how they should secure data transfers with their larger corporate customers, technologies exist at around the £4,000 mark which provide an equal amount of functionality as many corporate companies have.

To discuss your file transfer requirements, whether you’re an SMB or multi-national organisation, get in touch with Pro2col or give us a call on 0333 123 1240.

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Enabling the mobile workforce with Managed File Transfer

The proliferation of mobile devices within the enterprise is undeniable with tablets and smart phones becoming key tools for employees looking to ‘get the job done’.  Many CIO’s and IT Directors know they have a problem with ensuring the secure and controlled mobile access to data, but what’s the solution?

Should access be restricted completely and a ban be placed on BYOD (Bringing Your Own Device) to work?  Or should your staff use internal tools such as Sharepoint, live with its inadequacies and struggle on with their limitations knowing that its not specifically built for the job?  Or do you take on the challenge of choosing the right tool for the job?  Realistically the choice is already made as there’s no easy way in which to stop people using mobile devices.  The most effective route is to provide them with the right tools to be successful in their jobs, whilst giving IT and security teams the tools that they need to manage users, set security policy and privileges.

Some key thoughts you should consider when selecting a mobile enabled managed file transfer solution are:

Mobile File Sharing

  • What mobile / tablet platforms do you need to support?
  • Is there a business need for a mobile application or will a browser based interface suffice?
  • How many users do you intend on providing the technology to?
  • How will you restrict access to data, e.g. users home folders only?

At Pro2col we’ve been helping companies to secure their data since 2003 and securing the mobile workforce isn’t a great deal different.  Of course there are a few different considerations to take into account, but that’s all part of what we do.  We work with a wide range of managed file transfer vendors, not all of whom want to be listed on our web site but who are taking the secure exchange of data with the mobile workforce very seriously.  Different vendors take different approaches to addressing the problem.  We work with vendors who have approached mobile file sharing from very different perspectives, which might form another blog item.

The experience we’ve gained in helping other enterprises address their mobile file sharing problems can help your business too.  Overcoming the challenge of securely exchanging data with remote workers across a range of mobile or tablet platforms, doesn’t need to be a hassle.  Get in touch with our team of technical specialists on 0333 123 1240 to work out what’s most suitable for you.

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Hosted v’s On Premise Managed File Transfer

Over the past couple of years there has been considerable hype around saas, hosted or cloud based solutions – the managed file transfer marketplace has been no different.  We speak to many businesses on a daily basis about their file transfer requirements and inevitably, a number of them ask for a cloud based solution. So we’ve been speaking to a range of our vendors, natural leaders in the software field, but many of them seem unwilling to step out of their traditional marketplace and into the cloud space.  There are of course good reasons for this.  For example, the impact on existing software sales, the responsibility that goes with managing other peoples data and probably most importantly, the size of the market. According to Gartner only 10% of the managed file transfer marketplace actually relies upon a cloud based solution.  With the managed file transfer sector experiencing +20% growth year on year and the shift to cloud solutions not likely to slow any time soon, transition to cloud services could become the next major battlefield for vendors. However as it stands, this certainly isn’t reflected in the managed file transfer marketplace as there are many more software vendors than service providers.

Laptops in the Cloud

If you’re thinking about implementing a hosted or on-premise managed file transfer solution, there are a number key points to consider.  Here are a few to start you off:

Cost of Ownership

Cost is the number one factor influencing the choice of managed file transfer solution for most businesses.  Implementing and managing an on-premise MFT solution can be pricey, some of the costs to consider are:

Software – The initial software purchase price can range from £5,000 to in excess of £50,000 but once this has been paid, the solution is yours.  Although hosted services appear cheaper in the short term, ongoing subscriptions can be costly in the long term.

Hardware – Providing an environment to install and run the MFT solution can also add up, especially when you take into account disaster recovery or high availability.

Infrastructure – Hosting files on your own server can prove a problem, bear in mind the impact on your Internet connection when a 1Gb file is shared with 50 or more external users!

Support & Management

Another point to take into account after the initial go-live of a managed file transfer solution are the costs associated with ongoing support and management. Specifically:

Internal Support – If you deploy an MFT solution, the responsibility of support and management falls on internal team members, whereas with a hosted solution much of the ongoing support is outsourced to the service provider.

Availability – Generally hosted services run in high availability data centers.  Therefore, they offer guaranteed uptime with load-balanced solutions as the norm and include SLA’s.

Scalability – In a hosted environment, scalability of your product is generally available on demand or at the touch of a button.  It’s not always quite so simple with an on-premise MFT solution.

Back-up/disaster recovery – Usually provided as part of the service by hosting providers, back up and disaster recovery can be costly when purchased as part of a solution package.

Deployment

Bringing an on-premise managed file transfer solution online has its challenges. Ports need opening on firewalls, rules need setting up, plus there are considerations about the design of the solution and how it will sit within the corporate infrastructure.  Hosted solutions are incredibly fast to deploy given that much of the above doesn’t come into play.

Functionality & workflow

Typically, functionality and workflow features are key drivers in the decision making process. On-premise managed file transfer solutions offer far more in the way of a comprehensive feature set:

Bottlenecks – Having files local to you, when you need them can save a considerable amount of time in terms of loss of productivity, especially for larger enterprise deployments.  Pushing data to remote services can impact upon an end users time or can delay internal processes.

Integration – More often than not, hosted solutions are somewhat limited in the level of integration capabilities they offer.  This is an important factor to take into consideration as lack of integration reduces the potential to automate tasks and minimise the man hours wasted on routine tasks.  There are of course exceptions to the rule as there are some very capable hosted technologies.

These are just some of the key areas to be mindful of if you’re weighing up the pros and cons of hosted vs on premise managed file transfer solutions.  Ultimately, the decision will be fueled by the scope of your requirements and the size of your budget.  Whatever these may be, there is a managed file transfer solution out there to fit your business needs.  If you want some help pinpointing the right solution for you, please contact Pro2col on 0333 123 1240.

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Powys County Council might have saved £130,000 by using Ipswitch MOVEit DMZ

This month the UK’s Information Commissioner’s Office has served a Monetary Penalty Notice of £130,000 to Powys County Council, after the details of a child protection case were sent to the wrong recipient. The penalty is the highest that the ICO has served since it received the power in April 2010. The severity of the penalty reflects the fact that the local authority had already received a warning from the ICO to tighten up its security measures following a similar breach.

Over the past 18 months Pro2col has worked closely with a number of County Councils looking to implement a simple way of securing person to person, ad hoc   file transfers.  Additionally, with County Councils looking to centralise or share the cost of services (Shared Services), Ipswitch’s MOVEit DMZ with the Ad Hoc module has proved a very popular choice, especially considering the cost of the Enterprise licence in comparison to other vendors.

MOVEit DMZ has another extremely popular feature – the option to licence multiple organisations on the same server, providing separate branding options for other services, e.g. Fire, Police, District and Borough Councils, whilst keeping users and data separate.  This dramatically reduces the total cost of ownership.

If you’re a Council with a requirement to secure person to person file transfer whilst benefiting from an industry leading secure file transfer server, then speak to one of our consultants. We’ll assess your individual requirements and help you to evaluate the best solution for your needs from the market leading managed file transfer vendors with whom we work.

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Should I Use Transport Encryption Or File Encryption

This morning I was asked if I recommended using transport encryption or file encryption to protect company files and data.

My answer: “Use both of them, together!”

For starters, here’s a real quick summary of both encryption types:

Transport encryption (“data-in-transit”) protects the file as it travels over protocols such as FTPS (SSL), SFTP (SSH) and HTTPS. Leading solutions use encryption strengths up to 256-bit.

File encryption (“data-at-rest”) encrypts an individual file so that if it ever ended up in someone else’s possession, they couldn’t open it or see the contents. PGP is commonly used to encrypt files.

Encryption Code

I believe that using both together provides a double-layer of protection. The transport protects the files as they are moving and the PGP protects the file itself, especially important after it’s been moved and is sitting on a server, laptop, USB drive, smartphone or anywhere else.

Here’s an analogy: Think of transport encryption as an armoured truck that’s transporting money from say a retail store to a bank. 99.999% of the time that armoured truck will securely transport your delivery without any incident. But adding a second layer of protection – say you put the money in a safe before putting it in the truck – reduces the chance of compromise exponentially, both during and after transport.

One last piece of advice: Ensure that your organisation has stopped using the FTP protocol for transferring any type of confidential, private or sensitive information. Although it’s an amazing accomplishment that FTP is still functional after 40 years, please realise that FTP does not provide any encryption or guarantee of delivery – not to mention that tactically deployed FTP servers scattered throughout your organisation lack the visibility, management and enforcement capabilities that modern managed file transfer solutions deploy.

Original: Ipswitch File Transfer

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Moving On From FTP: Where To Begin

“My company still relies heavily on FTP.  I know we should be using something more secure, but I don’t know where to begin.”

Sound familiar?

The easy answer is that you should migrate away from antiquated FTP software because it could be putting your company’s data at risk – unsecured data is obviously an enormous liability.  Not only does FTP pose a real security threat, but it also lacks many of the management and enforcement capabilities that modern managed file transfer solutions offer.

No, it won’t be as daunting of a task as you think.  Here’s a few steps to help you get started:

FTP

  1. Identify the various tools that are being used to transfer information in, out, and around your organisation.  This would include not only all the one-off FTP instances, but also email attachments, file sharing websites, smartphones, EDI, etc.  Chances are, you’ll be surprised to learn some of the methods employees are using to share and move files and data.
  2. Map out existing processes for file and data interactions.  Include person-to-person, person-to-server, business-to-business and system-to-system scenarios.  Make sure you really understand the business processes that consume and rely on data.
  3. Take inventory of the places where files live.  Servers, employee computers, network directories, SharePoint, ordering systems, CRM software, etc.  After all, it’s harder to protect information that you don’t even know exists.
  4. Think about how much your company depends on the secure and reliable transfer of files and data.  What would the effects be of a data breach?  How much does revenue or profitability depend on the underlying business process and the data that feeds them?
  5. Determine who has access to sensitive company information.  Then think about who really needs access (and who doesn’t) to the various types of information.  If you’re not already controlling access to company information, it should be part of your near-term plan.   Not everybody in your company should have access to everything.

Modern managed file transfer solutions deliver not only the security you know your business requires, but also the ability to better govern and control you data as well as provide you with visibility and auditing capabilities into all of your organisations data interactions, including files, events, people, policies and processes.

So what are you waiting for, give Pro2col a call on 0333 123 1240 and let us help you replace your legacy FTP solutions.

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Secure Managed File Transfer: On Premise v’s The Cloud

Everybody is talking about the cloud; its today’s hot topic with more and more organisations considering a cloud-base (hosted) solution as an alternative to their current on-premise solution.  The shift to cloud based computing is gathering pace and consequently this is an area we’ve been looking at quite closely.

So, is Cloud based secure managed file transfer for me and what are the biggest drivers behind this trend?

1.  Its cheaper! Many IT departments spend at least 50% of their budgets on salaries, and up to 70% of IT staff time is spent on maintenance, according to analysts. In-house IT specialists cost companies for IT management resource. A hosted service, on the other hand, may charge a much-reduced figure for its service along with 24–7–365 monitoring and higher uptime than many companies can achieve with on-premise staff and systems.

Managed File Transfer in the Cloud

2.  Hosted providers can do it better. Hosting vendors store the information on their own servers and manage the entire system for you, drastically reducing the time and energy you spend on keeping your MFT up and running. A growing number of companies just want MFT isolated as an enterprise-class cloud service, with all the modern archiving, compliance and virus protection features they require along with a scalable infrastructure their IT staff never has to worry about or manage.

3. The cloud has gone mainstream. Primed for enormous growth and widespread adoption, recent research indicates that 84 percent of small and mid-size companies and 69 percent of large companies are willing to consider, currently reviewing or already using software-as-service (SaaS) solutions. A big part of this growth is a result of the increase in broadband Internet access, but another key factor is that cloud MFT vendors are making better, simpler and more affordable software that doesn’t require a technical degree to setup or use. It’s also more widely accepted as a safe alternative to on-premise solutions.

4.  Pay as you go. As budgets tighten in this tougher economic period, more and more companies are gravitating toward cloud-based solutions. With no technology to maintain, total cost of ownership is five to 10 times less than installed software, so it’s easier to budget and scale as you add and subtract users. In addition, cloud-based solutions do not require ongoing maintenance, time or complex upgrades, so what was once a capital expense becomes a more balance sheet-friendly operating expense.

As this shift to cloud based computing continues to gather pace, Pro2col is at the forefront of assessing the industries leading vendors to ensure we know which solution is right for your budget and set of requirements.

But, the Cloud isn’t for Everyone

Despite all this optimism for the cloud, we know there are plenty of situations where it may not make sense to move your MFT there. Some data may need to remain on-premise, behind a firewall for legal or regulatory considerations (e.g., HIPAA). Also, other on-premise applications (e.g., document workflows) may be tightly integrated with your on-premise MFT system, so moving your MFT to the cloud could pose challenges if you are hoping to continue coupling these solutions. Finally, many organisations may not have fully made use of their existing on-premise MFT solutions (i.e., they have already invested in it) and may not be able to easily or practically abandon it.

For independent advice on Cloud/Hosted FTP or On-Premise Managed File Transfer solutions contact Pro2col on +44 (0) 333 123 1240 or +44 (0) 1202 433 415.

Share on TwitterShare on FacebookShare on LinkedIn+1
 

Planning Considerations for Managed File Transfer in 2011

If you’re considering implementing a managed file transfer solution during 2011 then you’re in luck.  Pro2col has been lobbying Ipswitch’s marketing team to provide a web cast specifically for the UK marketplace to address the considerations that should be taken into account when planning the implementation of a managed file transfer solution.

We’re very pleased to announce that Jonathan Lampe, Vice President of Product Management at Ipswitch File Transfer will be hosting a webinar titled, “Learn how and why MFT should fit into your IT structure, as well as insights into top security, compliance and data breach concerns.”  Jonathan will also be discussing;

  • Smart steps to lower your data breach risk
  • Tips on the “person-to-person” aspect of Managed File Transfer
  • How to evaluate, select, and implement a MFT solution with rapid time-to-value and a positive ROI
  • Strategic approach to MFT project planning

The webinar will take place on Wednesday 26th January at 3.00 pm.

REGISTRATION FOR THIS EVENT IS NOW CLOSED.

Share on TwitterShare on FacebookShare on LinkedIn+1
 
© Pro2col Ltd 2012 | Terms of Sale | Privacy Policy | Sitemap
Part of the Pro2col Group