What You Need to do Before Providing Network Access to a Third Party

By Michael E. Storck

July 11, 2016 | Corporate Blog
CLICK HERE TO DOWNLOAD A PDF VERSION

A word to the wise - if you allow third party access to your business network, whether vendors, service providers or contractors, you had better revisit the security protocols you employ in the network or you will likely end up like Wendy's, the latest major retailer to be hacked via malware introduced through such third party access and credentials. Here are several steps you should take immediately to reduce the risk and demonstrate diligence with others’ personal information:

1. If you must provide third parties access to your network, insist upon strong, unique, hard-to-crack passwords for each login and several levels of authentication to reduce the chances your network will be compromised.
2. Even if you trust a third-party, limit what they can do on your network – limit access to the absolute minimum they require to do their job.
3. Have software applications and human review systems in place to monitor network access, the data accessed, and a reporting escalation process for suspicious or unusual activity so it can be promptly investigated.
4. Require third-party vendors, service suppliers and contractors to meet minimum security procedures. If they do not meet your baseline standards, don’t give them access to your network.
5. In your terms of purchase or service with the third parties, require them to indemnify you from any loss or damage resulting from their access to your network.


Disclaimer: The information in this post is provided for general informational purposes only, and may not reflect the current law in your jurisdiction. No information contained in this post should be construed as legal advice from our firm or the individual author, nor is it intended to be a substitute for legal counsel on any subject matter. No reader of this post should act or refrain from acting on the basis of any information included in, or accessible through, this post without seeking the appropriate legal or other professional advice on the particular facts and circumstances at issue from a lawyer licensed in the recipient’s state, country or other appropriate licensing jurisdiction.

Stay Informed


Related Team
headshot of team member Michael E. Storck
Michael E. Storck
Partner | Team Co-Leader - Securities
Related Content
Words Event
Events
INTA 2024 Annual Meeting
April 10, 2024
black arrow pointing right
word securities
Articles
FTC Enforces Section 8 of the Clayton Antitrust Act
September 28, 2023
black arrow pointing right
Client Alerts
United States Patent and Trademark Office Reduces Trademark Office Action Response Deadline
November 1, 2022
black arrow pointing right
In the news words
In The news
Michael E. Storck Listed in The Daily Record’s "Power 20 Intellectual Property 2022"
September 23, 2022
black arrow pointing right

Lippes Mathias LLP Logo Lippes Mathias LLP Alternate Logo
Lippes Mathias LLP White Logo


© 2024 Lippes Mathias LLP
Attorney Advertising. Prior results do not guarantee a future or similar outcome.
This website uses cookies to enhance user experience and to analyze traffic. To learn more about cookies and how we use them, please review our Privacy Policy. To continue use of this website, you must provide your consent to its use of cookies by clicking the "Accept" button.