About bberglund@armariussoftware.com

This author has not yet filled in any details.
So far bberglund@armariussoftware.com has created 13 blog entries.

Making the employee data shift from work to home

As companies quickly turn employees from office workers to work at home employees, there becomes a higher risk of data loss. 

Employees Working from home due to coronavirus is a data rsikUnderstand what users do from when they login to when they log out is the only solution to ensure the safety of your network data. The ability to protect against and detect an insider threat (Theft, fraud, data breach) becomes even more critical to the company’s data when employees work from home.

Companies that are dealing with regulatory compliances have a greater need to provide proof that data has been properly utilized and not compromised.

 

IT & HR policies do not have a bias towards the office, and having real-time 24/7 electronic enforcement is the only safeguard to ensure employees are not putting your business in jeopardy.

Having a solution that monitors and manages the user behavior with analytics is critical to any business with employees that work from home.

Armarius Software – Know Now, What You Need to Know! – An end user-focused software solution.

Our software installs remotely in less than 30 minutes.

2020-03-20T19:31:04+00:00March 20th, 2020|

Okay, now you sent your employees home to do their work!

You just solved the employee work from home issues right, or did you just open a whole new problem of protecting your company’s data?

Employees Working from home due to coronavirus is a data rsik Could your employees be copying your data to other devices, USB, printing it, or emailing themselves files?

How are you protecting against insider threats?

Does your company have a solution in place to securely protect your data when employees are working from home?

The solution!

Understand what users do from when they login to when they log out is the only solution to ensure the safety of your network data. The ability to protect against and detect an insider threat (Theft, fraud, data breach) becomes even more critical to the company’s data when employees work from home.

Armarius Software knows now, what you need to know and protects against user behavior threats.

Learn more about our user-focused affordable software solution and how you can protect your data if your employees need to work from home.

2020-03-13T19:07:33+00:00March 13th, 2020|

Everyone knows, pick four is a lottery game!

However, Cybercriminals know pick four as a 4 natural access point to breach your network.

For them, it is like winning the lottery.

To your employees, the pick 4 are 4 ways in which they do their jobs. Send an email with an attachment, upload files to a browser, removable drives, and printers. Many small to middle-market companies are unnecessarily exposing themselves every day to a potential breach because of these four leak points.

Think about phishing just for a moment, how many times have you heard or read a story about someone clicking on a link? Employees that have access to the web, clicking around on social media sites, copying files to Google drive, or downloading an executable without even knowing the potential threat that they just exposed to your network.

Access to personal emails is another threat. It is a great way to expose your network to a phishing attack that can launch the ransomware. It is also a quick way that employees can send sensitive files to themselves. A lot of sensitive data can be sent out via a personal email account.

We all love USB devices for their convenience and quickness to copy and share all kinds of stuff. Just ask Garrett popcorn how on employee downloaded 5,000 files of sensitive data and then left the company. They copied sensitive data to a USB and emailed files to their personal email account. Cybercriminals love USB devices because they know they get shared! Great place to hang out if you are a virus moving from one laptop to the next until they get access to your sensitive data.

The other common leak point is the printer as employees think if it is on paper, no one will know they just printed off the customer list, IP drawings, financials, or a vendor list. Just another soft target for access to that USB.

The solution to prevent your lottery winners from a significant win fall.

Start with an affordable SaaS from Armarius Software that proactively monitors and manages your endpoints. Electronically, and proactively enforce your IT and HR policy. Know where your sensitive data is on the network and who is doing what with your data. Proactively stop sensitive data before it leaves your network. Get reports and create alerts and know at all times that your endpoints are secure from being breached.

So now you know how to stop cybercriminals from winning the pick four lottery and what you can do to secure your endpoints.

Give us a quick call so we can share the other ways we can protect your sensitive data. Armarius Software 1-331-305-3700

2020-03-02T18:59:49+00:00March 2nd, 2020|

What you now need to know if your company has a DoD contract?


CMMC / DFARS 7012 / NIST 800-171

What you now need to know if your company has a DoD contract?

If it does, you need some level of certification.

The new Cybersecurity Maturity Model Certification (CMMC) will require that 100% of all DoD contractors/suppliers achieve some level of 3rd party certification related to what is specified in their contracts. Once the CMMC goes into effect, self-attestation will no longer be sufficient to bid on DoD contracts, and it will affect all companies doing business in the defense supply chain regardless of the type of business.

Start your certification by getting data compliant using Armarius Software’s affordable solution that installs easily across your company in 30 minutes or less.

  • Manage and monitor data on your network
  • Know where all your sensitive data is and who has access to it, what they did with it.
  • Provide data compliance reports for audit tracking and accountability
  • Proactively prevent human errors and stop malicious behavior
  • Receive alerts for situation awareness and take action
  • Set up policies and enforce them electronically

Armarius Software solution is available for the small to middle-market companies that do not have large IT budgets or staffing but need a solution for cybersecurity data compliance.

Ramp up your level of certification by using Armarius Software to become data compliant.

Click here to learn more

2020-03-02T18:58:54+00:00February 28th, 2020|

Press Release

An employee’s self-interest is the most common data breach in a Merger and Acquisitions

Providing proof that your I.P. and sensitive data has not been breached or compromised by employees will become the new requirement to close the deal.

Press release Warrenville, Illinois, January 24, 2020 – The fear of the unknown encourages employees to take data.  Everything from vendor files, pricing, customer list, drawings, formulas, and intellectual property is at risk and more. There is no hierarchy as to whom or when.

More than half of the employees who left or lost their jobs in the last 12 months kept confidential corporate data, and 40 percent plan to use it in their new position.

Quest research found 90% of organizations feel vulnerable to ‘insider’ attacks, with excessive access privileges (37%), access to sensitive data (36%), and the increasing complexity of IT (35%) being the key reason why.

The reality is companies do not even know what their employees took.

What’s at risk?

If the intellectual property or sensitive data was stolen, does the deal still get done?

Armarius Software announces today that it is the only real-time proactive software designed to protect your intellectual property and sensitive data from employees or anyone with malicious intent during and after the merger and acquisition process.

We provide you peace of mind and proof that your sensitive data assets and I.P. have not been compromised, and the value of your merger or acquisition remains an integral part of your investment.

Armarius Software is the only preventive SAAS solution that proactively monitors and manages in real-time your employees’ access to sensitive data and I.P.  It can stop malicious behavior, record it and provide alerts before any data can ever leave the network.

The software has a complete audit reporting feature set to prove that your I.P. and sensitive data has not been breached or compromised.  You will know through the entire M&A process who had access to sensitive data and I.P.  You will be able to monitor and manage who can have access and what they can or cannot do with the data.

Unlike other IT solutions which only react after an occurrence has happened and can threaten your deal. The Armarius Software solution can prevent a breach of your data before it can occur.  Even if an employee with good intentions, mistakenly tries to email sensitive content or attach a document, it will be stopped before it can be sent out.

Armarius Software manages and monitors what can and cannot be done with USB devices, printers, email, web access, screen capture prevention, and more.  The software also provides a discovery feature to know where sensitive data/files always are and protect your data from unsecured exposure.

Reporting functions are available to allow the automation and enforcement of HR and IT policies. The software uses an initiative user interface that allows an ease of installation in 30 minutes or less.

It only takes one employee to jeopardize a deal by taking your sensitive data or intellectual property.

Whether you are buying or selling, the value of your deal is in the data and I.P. so, protect IT with Armarius Software for M&A.

 

About Armarius Software

We are an affordable software-as-a-service hosted on your server or cloud platform. Our scalable industry-agnostic software solution is ideally suited for small to middle-market clients that have anywhere from 5 to 100,000 users. Our solution has proven its robustness in financial banking for over ten years.  Any industry from manufacturing, distribution, services, retail, and more can use our software.  Our software is used in highly regulated industries that required data compliance to meet SEC, SOX, HIPAA, NIST, GDPR, PCI, ISO, PII, CCPA, and others.  We proactively monitor and manage user behavior, so your sensitive data and I.P. is never at risk.

Know now, what you need to know!

 ###

If you would like more information about this topic, please call Brian Payne at 1-331-305-3700, or email bpayne@armariussoftware.com

2020-01-24T16:01:15+00:00January 24th, 2020|

5 Ways for Merging Companies to Ensure and Increase Endpoint Security

Mergers and acquisitions (M&As) are great ways to accelerate growth in industries, but they also pose a huge challenge, with increasing risks in cybersecurity rearing its ugly head. Businesses see cybersecurity issues as major flashpoints in hampering a deal or decreasing its value.

Cybersecurity experts agree, and a huge part of this is endpoint security. A cybersecurity risk survey on M&As found that 63% of IT decision-makers surveyed agreed that there is a wide range of cybersecurity risks for mergers. More than half of them note that during any M&A, they find Internet of Things and operational technology devices unaccounted for before the integration. The staggering amount of data put at risk by these endpoint security issues can not only disrupt the merger but also undermine the growth expected from the integration. Considering that 70% of breaches originate from them, endpoint security should be at the core of M&As. Here’s how:

Understand the cyber risks

M&As are particularly vulnerable to cyber attacks, and knowing the full scope of risks across both companies is key to making the deal go through. Never assume that the company you’re acquiring or merging with has inherent endpoint security. When Verizon acquired Yahoo, it sought almost a billion-dollar discount because of the massive data breaches it discovered from the tech giant. While the discovery of the breach and the cover-up almost killed the deal, it gave Verizon an advantage instead of a cybersecurity bust.

Do cyber due diligence

Risk profiling entails not only ensuring security and visibility across the company and endpoints, it also means navigating through specific risks and policies. The threat and regulatory landscape can vary by region, especially in this post-GDPR world. Ensuring compliance in internal and external endpoint security protocols is a necessary part of M&A due diligence.

Integrate with caution

Organizations need to be ready to work with two IT systems temporarily, at least until the integration has been completed. This entails operating with redundancies and maintaining multiple systems, but it pays to be precise. In Security Boulevard’s assessment of the Marriot breach after it merged with Starwood, it highlighted how it only takes a weak link for a breach to happen. The multimillion-dollar breach could’ve been prevented if the companies hadn’t rushed through the merger. The success of any merger hinges on the full understanding of the management systems and the technologies each organization utilizes.

Hire experts and consultants

Similar to how organizations entrust their M&A process to business professionals, firms undergoing the process can benefit from hiring cybersecurity professionals. The risk M&As pose to organizations and digital assets require consultants who are specialized in these situations. Maryville University’s recent evaluation of the cybersecurity industry notes how it is growing three times faster than any other IT role. From 2013 to 2019 the demand for experts in this industry doubled, and a huge segment of this growing industry are experts specializing in integrating systems and endpoint security protocols. With so much expertise available, there is no excuse for a company not having good cybersecurity defenses when heading into a M&A.

Be proactive

The overriding goal of M&As is enhancing a competitive advantage and increasing long-term performance. Being proactive in deploying endpoint security systems means going beyond the technical aspects of cybersecurity. The human aspect must be factored in too. Around 50% of compromised data is because of the users. Make sure that employees are aligned with the new integrated system. Using a centralized management system and data loss prevention solution helps in continuously streamlining the endpoint security of newly merged firms.

When companies come out victorious in mitigating cybersecurity risks in M&As, two potential advantages arise: the first being the lessons learned in navigating the M&A process, and the second being the ability to integrate IT systems. Both will prove valuable for the next big merger.

 Whether you are buying or selling, the value of your deal is in the data and I.P. so, protect IT with Armarius Software for the next merger and acquisition

Content 

By Jenice Bergh

2020-01-21T23:12:16+00:00January 21st, 2020|

Do you really need to manage your endpoints?

Over 50 % of data compromise is coming from your users!
It is becoming one of the most significant threats to small and medium-sized businesses today. More, than half of all enterprise data now lives on endpoints, beyond traditional visibility and security tools centered on a network drive or central server.

Human error accounts for over 32 % of sensitive data that mistakenly gets sent out. Another 39 % is done with malicious intent by disgruntled employees. Half of the employees who left or lost their jobs in the last 12 months kept confidential corporate data, according to IT BUSINESS EDGE, and 40 % plan to use it in their new jobs. The results show that everyday employees’ attitudes and beliefs about intellectual property (IP) theft are at odds with most company policies.

Sensitive data is at the core of all business, and protecting endpoints is quickly becoming a requirement of doing business. Regulatory compliance like HIPAA, PCI, GDPR, CCPA, SOX, NIST, and others can no longer be ignored or deferred as customers/consumers are demanding proof that their data is protected.

Trying to educate employees is good but, not a full proof or reliable solution. However, having data loss prevention (DLP) and endpoint protection (EPP) software that proactively monitors and manages the employee is the only solution. Reacting in real-time to human error or a malicious attack is a necessity.

A robust DLP and EPP solution like Armarius software knows through automation who accessed sensitive data? What they did with it and take the appropriate action all in real-time. The solution also provides productivity reports, alerts, and can be used to deliver reports for regulatory compliance. Enforcing IT policies and managing the four leak points from USB, Print, Web, email and even a screen capture is all part of the essential DLP and EPP software solution.
If you are thinking about a solution to monitor and manage your endpoints, then check out the Armarius Software that has developed an affordable SAAS for Windows-based solutions that are cloud-based or on-premise.

Know now, what you need to know about protecting your endpoints. Armarius Software
Click to learn more https://armariussoftware.com

2019-10-15T01:36:31+00:00October 7th, 2019|

To err is human, to a cyber criminal, it is priceless!

Why with all the IT support and cloud security is my company still vulnerable to data breaches?

The answer is actually very simple. It is caused by human error!  Your employees.

What most companies fail to understand is that over 33% of your data breaches are simply created by employee error. The other 39 % are malicious behavior of disgruntled or terminated employees.

Knowing this, cybercriminals create highly effective data scams that are all too convincing. It only takes a simple curious click in an email, on a website, and/or social media to activate a virus and ultimately cause a breach.

Up until now the answer has been “educate your employees” on your IT policies and then hope they follow them. Do you even know your own company IT policy, and is it being actively enforced?  When asked, the majority of employees click the “I have read and agree to button” without even reading it.

Then you have to remember the other 39 % of breaches are malicious employees. What are you doing to prevent them from taking your most sensitive data?  Customer contacts, intellectual property, financial data…etc.

Your answer should be using a proactive monitoring and management data loss prevention software solution.

The key being “proactive” as most solutions today depend on IT to react to a situation which leaves your company vulnerable.

Armarius software provides an affordable SAAS solution for SMB that allows you to proactively monitor and manage what the employees are doing and what access they have to your most sensitive data.

We can electronically enforce IT policies to prevent employee errors and stop malicious behavior. We can prevent them from downloading data to a USB, sending emails with sensitive data, printing out files, or accessing specific websites.

Our solution is ideal for companies that need to meet regulatory data compliance from HIPPA, SEC, GDRP, SOX, IPC, and more.

Companies are also using our software solution to create assessment reports on who accessed data when they accessed it and what they did with it. This will help the company prevent employee errors and stop malicious behavior.

Remember we are all human so proactively do something about it now!

Click here to learn more >  Armarius Software “Know now, what you need to know!”

2019-08-30T21:24:10+00:00July 11th, 2019|

Free 60-day DSRA to the City of Riviera Beach

July 1, 2019

Mr. Ronnie L. Felder, Mayor
City of Riviera Beach
600 West Blue Heron Blvd.
Riviera Beach, FL. 33404

 

Dear Mr. Felder,

The Ransomware attack on your city’s network was most unfortunate and there appears to be a growing outbreak of similar malicious activity elsewhere in Florida, including Lake City and Stuart.

On June 21, 2019 a press release posted by the Boca Raton based Center for Information Security Awareness (CFISA) stated they have offered to provide free cyber security awareness training to the Riviera Beach City employees. /PRNewswire-PRWeb/

As the CEO of Armarius Software, I would like to assist by offering you a free 60-day Desktop Security Risk Analysis (DSRA) including comprehensive monthly reports that summarize all your users activity during this period.  A redacted DSRA example report will be provided to you (and CFISA) in advance to demonstrate the type of results you can expect from this audit process.

We will assist you with the installation of light-weight agents on your 310 desktops and 90 laptops, and configure our server console for centralized information collection.  The real-time monitoring captures programs and processes launched, websites visited, files accessed (which includes printing and downloading, deleting, copying, etc.), and much more.  This data is then used to generate the accurate monthly reports showing potential security risks along with our recommendations on ways to mitigate them.  This will help your IT department and CFISA identify the “security blind spots” as they work on updating their security policies and complete the employee training program.

During the assessment period we show your team how our Scribe Management Suite can help you enforce security policies should the city elect to subscribe to our monthly security software services at the end of the 60 days.  Business policies for both data control and authorized program usage can be established.  This service would allow the city to block malicious processes before they can launch and cause another costly disruption.

The Armarius security platform has been developed and deployed for nearly 20 years.  Our clients have traditionally been in highly regulated markets (i.e. banking and financial institutions) where government security audits are performed, and the repercussions can be significant should evidence of negligence be identified.  The capability to block malicious processes was the direct result of our working with such customers. Today we work with clients in virtually every market to assist with adhering to compliance requirements, protecting proprietary information, and preventing malicious programs from launching.

We are committed to helping prevent malicious Ransomware attacks from spreading.  I would welcome the opportunity to discuss my offer with you and the city Board Members.  You can contact my office at our number listed above.  Looking forward to hearing from you.

 

Sincerely,

Brian Berglund, CEO

2019-07-02T19:26:56+00:00July 4th, 2019|

Since 1949 no one knew their secret

Garrett Popcorn Shops says it guards its recipes so tightly that only three employees have access to the information.

Allegedly the director of research and development saved the information to a USB drive and sent it to her personal email account. The information she sent herself included pricing, product processes, distribution agreements, supplier information, market research, and more, according to the suit.

More than 5,000 files were wrongfully downloaded in the days before the termination, putting its secret recipes at risk.

The release of Garrett’s secret recipes, formulas, and other trade secrets “would be severely detrimental” to its business and “cause irreparable harm,” the lawsuit states.

How could this breach have been prevented?

Armarius software could have proactively, prevented this breach from happening the second this individual inserted the USB and ensured that files in email never left the network!  The software could have also alerted the company’s management or security officer of malicious behavior.

Even if you allow some employees to have access to your sensitive data, shouldn’t you know what they are doing with that sensitive data? 

If sensitive data and intellectual property are a critical part of your business, then securing the end node with Armarius software is essential to your business.

“Know now, what you need to know, what your employees are doing with your data!”

Click here to learn how the solution can protect your data:  Armarius Software.

Read the full article: Chicago Tribune

https://www.chicagotribune.com/business/ct-biz-garrett-popcorn-stolen-recipes-lawsuit-20190422-story.html

2019-06-14T19:16:55+00:00June 14th, 2019|