|
Over the past 18 months there has been a significant increase in the
fraudulent use of telephone facilities by organised crime. Many
companies are not aware of telephone facilities by organised crime. Many
companies are not aware that bills of tens of thousands of pounds can be
incurred during a few days of unauthorised access, for which they remain
liable. Although the attacks are very sophisticated, they form only one
part the overall fraud and thus all companies both large and small are
equally venerable.
Because such fraud is a relatively new phenomena in the UK most
companies have not considered applying even the most basic levels of
protection to there systems. Switch providers/maintainers and telephone
operators all emphasize that that it is the companies responsibility to safeguard
their systems and will not accept liability for any infringement.
Adequate protection is possible for most installations but to be
effective it must be tailored to a companies business and operational
requirements.
Through our work work with companies who have been subject to
fraudulent attacks and our active participation on industry study
groups, tba has developed a security audit that both identifies areas of
venerability and provides practical advice on how to protect. This audit
takes due account of industry standards, in particular the
recommendations of BS 7799. Such advice recongises the need to trade off
levels of protection against the operational inconvenience from providing
that protection, in order to provide a solution that is economical and
practically matched to the companies vulnerability.
Typical elements of tba review include:
-
Physical security of telecommunications facilities on site
-
Access security against on-line intruders (hackers and criminals)
-
Monitoring audit trails
-
Networks aspects
-
Internal fraud
-
Service level agreements and other parties responsibilities
-
Insurance
The report provided contains all the information you will need to
determine the best approach for your company and how to carry out the
next steps. Recommendations are detailed and explicit. If required tba
would be pleased to help you implement them and to liaise with other
parties in order to ensure that your systems are protected to the levels
that you require.
HEALTH
CHECK - Telecommunications Cost and Efficiency Audit service overview
|
