Mitigating the Ex-Employee Risk with OneLogin

Organizations should embrace thorough clearance procedures when employees leave to avert possible damages. While some employees may exit the company with good intentions, employers should not ignore the security threat of ex-staff members. OFCOM suffered a data breach after one of its former employee leaked company information to an outsider. Lucky, the recipient was not a competition and had the company’s interest in mind. But not all companies have the luck factor.

Marriot Hotels incurred losses of $50,000 after a former employee accessed the company systems and reduced the room rates to $12-59 from $159-4999. Estimates by OneLogin indicate that 24% of businesses experience data breaches associated with ex-employees. Plus, almost 58% of ex-employees may have access to corporate systems even after they had left.

Human resource clearance and agreements are not enough. Instead, human resources and the IT departments should collaborate during such periods. With automated processes, IT personnel can deactivate corporate accounts of former employees within minutes after termination or resignation. Tools that can permanently log off an employee are also available in the market. However, only 50% of the businesses in the UK use automated deactivating technology.

Security and Information Manager can help detect whether or not an employee is still accessing a company’s information. Unfortunately, about 45% of business do not use SIEM and hence are at a higher risk of potential leaks. Surprisingly most corporations revoke physical rights to the office but forget about digital access. Some of the automated platforms that can enable syncing between HR and IT are the Workday, Active Directory, UliPro, LDAP, and Namely. Alternatively, companies can embrace the G Suite and Office365 applications that allow automated deprovisioning of staff.

OneLogin uses identity and access management cloud-based solutions to enable companies to secure devices and applications, increase end-user functionality and reduce time spent offboarding and onboarding. Brothers Christian and Thomas Pedersen founded the company in 2009 and launched OneLogin one year after. The company products are available to more than 300 app vendors, and 70 Saas retails and serves a wide range of sectors including manufacturing, health, services, retail, media and financial services. Some of OneLogins’ notable clients are Berklee College of Music, Dell service, Steelcase, Fairfax Media and Pinterest.