Concentric’s spending plenty of time on Zoom right now. We’re doing everything from formal, scheduled meetings to quick check-ins to Friday lunches on the platform – so when their recent security issues came to light we took a hard look at what was going on. We’re a security company after all. We can’t just let that grass grow under our feet.
Here’s what we decided. Just to caveat my thoughts here, we’re a small startup in Silicon Valley. The risk tradeoffs we make may not be right for you. In fact, we’re probably pretty unique – as a small startup, we can (and must, sometimes) tolerate some risk to stay agile. But as a company in the security space, we also need to follow best practices.
Zoom’s gotten plenty of attention. As a natural skeptic, I wasn’t prepared to accept either the worst case headlines (“Why Most Should Avoid An ‘Out Of Control’ Zoom Right Now”) or the inevitable assurances from Zoom that everything would be alright in just a release or two. The truth, I figured, would be somewhere in between.
This article from FastCompany was a nice, level-headed analysis of the issues that led to all the hullabaloo. Here’s our take – again, buyer beware, but this is what’s working for me and my company:
One of the most likely scenarios for data loss via Zoom is a user unwittingly making a recorded meeting publically available. Our Semantic Intelligence solution can help you mitigate this risk by identifying and assessing whether a Zoom file is overshared (and remediating the risk if it is).
If Zoom’s become a bigger part of your remote-work portfolio, we’re offering free access to our solution to help teams cope with the expanded attack surface these tools can create.
Interested? We’d love to give you a demo. Or check out this piece on data governance or this one on data classification and risk management. Questions? Let us know! [email protected]