A recent emedia study reported by Infosecurity Magazine discovered that only 35 percent of organizations surveyed have security policies in place that encompass Microsoft SharePoint. This statistic is even more alarming when coupled with the fact that Forrester’s “Understand the State of Data Security and Privacy” report found that some of the biggest threats to an organization’s sensitive data come from within – with the majority of breaches stemming from misuse of data by employees.
Statistics like these explain why concerns around the protection of an organization’s security are top-of-mind for many today. No matter the industry, business leaders are searching for solutions that can provide the extra shielding needed to ensure information is protected. AvePoint certainly recognizes that need, which is why DocAve Report Center in DocAve 6 Service Pack (SP) 5 includes a new Usage Pattern Alert capability. This new SharePoint reporting feature gives companies a watchdog tool to help protect against potential leaks of SharePoint content and to manage the actions of users with elevated privileges.
What is Usage Pattern Alerting?
To set up Usage Pattern Alerting, the SharePoint Administrator must build specific usage rules to look for user activity that is outside the norm of expected patterns within a time period. What constitutes as suspicious activity can be defined in many ways. For example, a user suddenly downloads a large amount of files within an hour, or a highly sensitive document that normally has very few views suddenly generates a large number views in a short amount of time. The definition of abnormal behavior is wide and varied, and Usage Pattern Alerting gives organizations the flexibility to customize based on their individual circumstances.
Once the rules are set, administrators can then decide what to do once unusual activity is detected. Custom actions can be set up within Usage Pattern Alerting to immediately notify and/or mitigate the offending issues. Email notifications can be set up to alert specific users about questionable activities that could greatly impact their organization.
Additionally, Usage Pattern Alerting allows users to import custom .exe and PowerShell scripts to instantly perform actions that stop further encroachment such as changing the permissions of the user to prevent him or her from downloading any more documents. To view the specific violations, a dashboard is available within DocAve Report Center that contain the user’s name, the date/time of the offense, and the offending action that took place.
What can Usage Pattern Alerting do for me?
Organizations not only need to protect themselves against outward threats, but also be just as vigilant against internal ones. Investing in proactive and preventative measures helps organizations better manage privileged access within their own borders. Such oversight is essential to ensure special access is not abused and misused.
Usage Pattern Alerting in DocAve Report Center gives organizations the ability to supplement their existing watchdog mechanisms to help prevent malicious behaviors that occur in their SharePoint environments and to protect themselves from unwanted intrusions. It also gives SharePoint administrators as well as security and compliance officers another weapon – along with our Data Loss Prevention (DLP) and Governance, Risk, and Compliance (GRC) management platform AvePoint Compliance Guardian – to identify and prevent harmful attacks.
Have a specific question about this new feature? Leave a comment on this blog post or join us in our product discussion forums.