enterprise social network, wiki, mediawiki, internal, private, corporate, collaboration, tools
You are not logged in. Access is limited. Login or see membership information. • Streetwise Security Zone Community

To see the list of all blogs, including Scott Wright's Security Views Blog and the Streetwise Security Zone Podcast click HERE. You also can subscribe via an RSS reader, or check the "Watch This" box in the left column to receive news by email of new articles.


Watch this Blog Notify me by e-mail any time a new post is made to this blog.

Scott Wright's editorials on a variety of security issues for non-technical business managers and home computer users. Please feel free to comment and help spread the word that managers need to think about their information security risks.

February 2011 Posts

Archives

  Scott Wright's Security Views
Blog Entry

Can enterprises use private social media tools for secure collaboration internally?

Thursday, February 10th 2011 @ 7:10 AM (not yet rated)    post viewed 14105 times

We know that many organizations are using open source Wiki software and platforms (e.g. Mediawiki) to do collaboration internally without exposing their systems to 600 million other users. But are there any other tools that enterprises can use to mimic the real-time connectivity of social networking sites like Facebook internally?

Why would a business want private social networking tools? Isn't that an oxymoron?

I believe that enterprises can and will eventually begin to use "internal" or "private" social networks to allow for easier real-time collaboration, while avoiding some of the risks of the "public" social networks - such as social engineering attacks, Koobface attacks, etc. I'd really like to learn more about what the options are for businesses to deploy their own social media tools internally, or in a private cloud. Internal deployments would probably tend to be more secure, with potentially more control over access and authentication of users. But a cloud-based implementation by a trusted service provider might also be quite secure. Either way, the facility would be less of an easy target for attackers.

Have you seen or heard of such a thing? If so, where can I learn more about them?
Doing a Google search turns up many hits, but I'd like to hear about some success stories and reviews of these kinds of solutions that could benefit the members of the Streetwise Security Zone as we try to figure out how to leverage the power of social media, in a secure and efficient way.

Also, what are your thoughts? What would it take for enterprises to be able to use social networks and social media tools securely? 


 

Scott Wright

The Streetwise Security Coach

Phone: 1-613-693-0997
Email: scott@streetwise-security-zone.com
Twitter ID: http://www.twitter.com/streetsec
LinkedIn: http://www.linkedin.com/in/scottwright (please send a personal message first on LinkedIn if you'd like to connect, to ensure that you're not a spammer)


Did you find this post interesting?
If so, why not find out more?...

To download my FREE Security Management Resource Guide now, and to receive my series of Streetwise Security Tips, as well as my Streetwise Security News and updates click HERE.


Join the Streetwise Security Zone, or learn more about mobile security risks through the Honey Stick Project.


If your organization is looking for innovative ways to make its security investments more effective right now, CLICK HERE to learn more about Streetwise Security Awareness solutions.

 

Site Meter

 rate this post: very bad poor average good fantastic!
Comments

dwechsler
Personal
dwechsler said on Wednesday, February 23rd 2011 @ 6:42 PM:

As a systems designer in a company that uses a collaboration tools from basic email to wikis, an intranet, and sharepoint, I don't think this provides enough connectivity to truly reach a company-wide synergy.   The ability to have internal "public" conversations where anyone can add their input would be extremely valuable in that it would help to lower the walls between various marketing / design / manufacture / test groups, partner companies, and remote workers thus allowing greater amounts of collaboration in real-time, without the need to wait for the weekly project status meeting.  I can see cool things happening like getting meaningful contributions from employees who have relevant experiences from one of their previous careers.  It can significantly boost the knowledge capital of an organization.  Furthermore, being able to browse employee profiles can create greater camaraderie between co-workers by their ability to find common interests with ease, at least much easier than the chance conversation where you discover you have something in common.

Another solution is needed which the likes of Yammer, Chatter.com, SocialCast and others solve.  I am very interested in bringing these technologies to my company.  Despite selling the idea to a number of upper-level managers, I am hoping that we can move forward with a pilot run without our IT department vetoing  it.

Twitter  @dwechsler


ScottWright
Group Administrator
ScottWright said on Thursday, February 24th 2011 @ 6:24 AM:

Excellent comments David. And welcome to the Streetwise Security Zone!

I think your point about getting more participation from unexpected team members is a great one. It reminds me of a government department I heard of that started using Wikis to develop new documentation and policies. Despite the fears that people would maliciously change policies under development, they discovered via the "discussion" tabs that people were more likely to comment there. In fact, they learned about people who had an interest in various initiatives whom they would not have otherwise found in the organization.

That's what I would call positive collaboration in the spirit of improving the culture and productivity. It starts to become less about security, while still improving the overall security posture.

I think we should start by creating a list of candidate software packages, both open source and commercial, that can be deployed easily by an IT department, and perhaps make note of the tools' potential benefits for collaboration in an enterprise. We could also launch a survey.

Anyone care to help out?

Thanks,

Scott


Copyright 2012. Security Perspectives Inc. All Rights Reserved.