In the business arena, one area is often neglected. When an employee leaves a company, they often leave with access to all the business’s information. This has resulted in stolen information, data breaches, and damaging actions. Despite this, 58 percent of all former employees still have access to the network of the corporation they left. This has caused data breaches for 24 percent of these corporations. This can be catastrophic when the data end up in the hands of a competitor, and severely damage the reputation of the brand.
In one instance, a former, disgruntled employee of Marriott Hotels accessed the internal system of the corporation. Through the reservation system, the room rates were slashed from $159 through $499 to $12 through $59. This breach cost Marriott $50,000 because they did not protect themselves from a former employee. The accounts of former employees are active for over a month.
IT, and HR must work as a team to prevent this type of situation. An automated process is not time intensive, or difficult, and prevents a former employee from accessing any accounts within minutes after termination. Once the employee logs out for the last time, they are locked out. Research by OneLogin revealed this technology is only used by half the businesses in the United Kingdom, and 45 percent do not use a Security and Information Manager to protect corporate data.
The solution is OneLogin because they provide the necessary tools. This includes an automated syncing of all HR directories including Namely, UltiPro, and Workday because these provide the truth regarding the status of an employee. IT directories such as LDAP, and Active Directory are also included because they often include control access for applications. Automated deprovisioning for employees is critical for applications using a programming interface for user management. These applications are usually used in birthright applications including G Suite, and Office365.
Automatic checklist generation is used by IT admins so all former employees can be manually deprovisioned from all apps. Since an automated deprovisioning API is not part of most applications, IT must intervene manually. All SIEM systems receiving application access must be double-checked to make certain they are not being accessed by former employees.