What a Disgruntled Ex-Employee Who Cost a Company $678,000 Can Teach All Business Owners

What a Disgruntled Ex-Employee Who Cost a Company $678,000 Can Teach All Business Owners

In early June, Kandula Nagaraju, a 39-year-old former National Computer Systems employee from India, received a two-year, eight-month prison sentence for unauthorized access and deletion of 180 test servers at his previous workplace.

Despite being terminated in October 2022 due to performance issues, Nagaraju retained access to company systems. He used this access to develop and execute scripts that deleted the servers. This action cost NCS approximately $678,000 to rectify. Fortunately, his nefarious deeds did not compromise sensitive data as the servers were isolated and used for app testing. But, the company still suffered an enormous financial loss. Plus, things could have been a lot worse.

This single case serves as a critical reminder: ex-employees can still be a liability, and if they maintain their insider access, they can exploit said access to inflict extensive damage. Not only monetarily, but on a much wider and more consequential scale. So harmful, that it could bring a company down and ruin its reputation to the point of no return.

Why Businesses Should Always Delete the Credentials of Former Team Members

Sadly, Nagaraju is just one example of many. Several companies have suffered immensely – but unnecessarily – simply because those organizations did not take the proper steps to protect themselves. Instead, they were complacent or too late to act and the results were disastrous. Because of these instances, businesses should always remove ex-employee credentials to keep their corporate data and work product secure for several reasons:
  • Data security. Ex-employees may still have access to sensitive company information, such as customer data, trade secrets, or financial information. Removing their access ensures that this data remains secure and is not accessed or misused by unauthorized individuals.
  • Prevent unauthorized access. Even if an ex-employee has left the company – even on good terms – there is always a risk that they could use their access to the company’s systems to make changes or access data without approval. Removing their credentials prevents this from happening.
  • Compliance. Many industries have regulations that require companies to protect sensitive data. By removing ex-employee credentials, companies can ensure they are meeting these compliance requirements.
  • Insider threats. Ex-employees may be disgruntled or may have left the company under less-than-ideal circumstances. They could potentially use their access to company systems to sabotage the company or steal data. Removing their credentials helps to mitigate this risk.
  • Avoid confusion. If an ex-employee’s credentials are not removed, it can lead to confusion about who has access to what. This can make it more difficult to manage access to systems and data.
And last but not least, data breach prevention. If an ex-employee’s credentials are compromised, it could lead to a data breach. Removing their credentials helps to prevent this. By deleting their access, companies have less risk of sensitive information getting out into the public domain. Because once that data is out, it’s up for grabs for anyone to capture it.

So, businesses of all sizes should have a process in place to address such security issues. When an employee leaves the company voluntarily or a team member is terminated, that person’s credentialed access should immediately be removed. Additionally, steps must be taken to fill that new void to ensure workflow continues virtually uninterrupted in order to meet benchmarks and deadlines. Moreover, to keep proprietary data safe.

Want to Accomplish More?

Do you want your company to grow faster and earn more while you spend more time with your family doing all the things you started your business to do?

We can make that dream a reality. Give us 30 minutes and we will show you how to get your life back. Skeptical? Good! Put us to the test.

You can call us for your free appointment at (602) 541-1760, or, if you prefer, Waters Business Consulting Group to learn more about us and the services we offer.

Like this article?

Share on Facebook
Share on Twitter
Share on Linkdin
Share on Pinterest

Related Posts

How to Manage Your Teleworking Staff

April 9, 2020 No Comments

Managing a staff remotely presents a number of challenges, some of which are completely unexpected. When a business first goes to a telecommuting or teleworking structure, it naturally undergoes some growing pains to adjust to the new dynamic. Although it is ostensibly more beneficial, cutting down on some expenses, and providing more convenience to staff who no longer have to commute, there are still some issues which can arise. So, it’s best to know what to expect. The Upsides of Telecommuting for Small Businesses There are a number of advantages to remote work situations. It gives team members more flexibility with their schedules. Also, it cuts down, if not nearly eliminates, office politics. Additionally, another benefit is that it can reduce operating costs, having to rely less on a dedicated, physical location. Particularly for small businesses, telecommuting seems an effective strategy for maximizing a workforce while still keeping costs low. You don’t need to pay for a centralized office space or deal with a drive to work, but you do have to contend with YouTube, Facebook and myriad other online distractions. —American Express But, it also means having to wrangle with coordination efforts, relying on different forms of communication, along with various other things to work out. With just a bit of tweaking here and there, it’s possible to make it work and even to reach a point where pretty much everything flows seamlessly. Ways to Manage Your Teleworking Staff Of course getting from Point A to Point B requires a combination of ingenuity, cooperation, and some out of the box thinking. To effectively manage a remote staff, you’ll need to do the following: Clarify roles. Each team member must clearly understand his or her role within the organization to eliminate duplication of effort, gaps in productivity, and more troublesome issues. Every person should have a defined, central role, as well as alternative responsibilities, just in case there is a need. Set expectations. In addition to defining everyone’s role, you’ll also need to clearly delineate your expectations. Otherwise, people won’t know exactly what you want out of them, and that’s a recipe for disaster. Develop procedures. It’s pretty straightforward to set up and explain and demonstrate procedures in a face-to-face environment, but presents quite a challenge with remote staff. This is where most of the initial communication will be necessary, in order to coordinate how things should be done. Set Regularly Scheduled Conference Calls. Regular communication is key with your staff in order to develop relationships and high trust cultures with accountability. Have a set time and day with a set agenda on key performance metrics and results, project updates, review current challenges and opportunities and collaborate openly so that there is a sense of community. Use a video conference application like ZOOM or GoToMeeting.com or other for more effective communication. Understand security issues. With remote work comes the risk of work-product being compromised. You need to learn about and address any potential issues by being proactive as possible. Reach out for help when needed. Lastly, if things just don’t seem to work, you should seek help with the right people. you might need to consult or hire a technical professional in order to get everything you need in order for the system to be fully functional. What other suggestions do you have? Please, share your thoughts and experiences by commenting! Interested in learning more about business? Then just visit Waters Business Consulting Group.

Read More »

If an Employee Right to Disconnect Law Came to the United States, Would Your Business Be Prepared?

March 15, 2024 No Comments

If an Employee Right to Disconnect Law Came to the United States, Would Your Business Be Prepared? Today’s fast-paced, technology-driven world allows everyone to be constantly connected. While this offers a lot of convenience and greatly bolsters collaboration, it does contribute to disappearing boundaries between work and play. In other words, employers can reach their employees, even when said employees aren’t on the company clock. Enter the concept of an Employee Right to Disconnect Law – a movement that is gaining considerable traction. Right now, it’s mostly in Europe. But what would happen if such a law were to come to the United States? Would your business be prepared for the changes it would bring? Let’s explore the possible implications and how you can ensure that your business is ready. Understanding the Employee Right to Disconnect The Employee Right to Disconnect is a legal concept that aims to protect employees from being obligated to respond to work-related communications outside of their regular working hours. It allows employees to truly disconnect from work and enjoy their personal time without the fear of repercussions. In recent years, several countries have introduced employee right to disconnect laws to address the growing issue of work-life balance in an increasingly connected world. Again, these laws aim to protect employees from being contacted outside of working hours and to ensure that they have the right to disconnect from work-related communication. Currently, France, Portugal, and Australia have an employee right to disconnect law, while Spain, Ireland, Germany, and Italy are considering adopting such a measure. Although there is no federal law in the United States currently in place that guarantees the right to disconnect, some states, such as New York and California, have introduced bills to protect employees from being contacted outside of working hours. So, it’s at least something to be aware of and begin to tentatively plan for. Implications for Businesses If an Employee Right to Disconnect Law were to be implemented in the US, businesses would necessarily need to adapt their policies and practices to comply with the new regulations. This could mean setting clear boundaries for when employees are expected to be available and ensuring that work-related communications are not sent during non-working hours. Is Your Business Prepared? To determine if your business is prepared for an Employee Right to Disconnect Law, ask yourself the following questions: Do we have clear policies in place regarding work-related communications outside of working hours? Are managers and employees trained on the importance of disconnecting from work to maintain a healthy work-life balance? Have we implemented technology solutions that can help limit after-hours work communication? Ensuring Compliance To ensure that your business is ready for an Employee Right to Disconnect Law, consider implementing the following strategies: Establish clear guidelines for work-related communication outside of regular working hours. Provide training to managers and employees on the importance of disconnecting from work. Utilize technology tools that can help automate processes and limit after-hours communication. This means you should be at least tentatively preparing your business for a potential Employee Right to Disconnect Law. By taking proactive steps to establish clear policies and promote a healthy work-life balance, you can ensure that your business is ready for any regulatory changes that may come its way. Want to Accomplish More? Do you want your company to grow faster and earn more while you spend more time with your family doing all the things you started your business to do? We can make that dream a reality. Give us 30 minutes and we will show you how to get your life back. Skeptical? Good! Put us to the test. You can call us for your free appointment at 602-435-5474, or, if you prefer, send us an email. You can also visit us at Waters Business Consulting Group to learn more about us and the services we offer.

Read More »