Krakowski Bank Spółdzielczy Mitigates Insider Risk through Employee Awareness and Education

KBS, a Polish bank with a 120-year history, provides a diverse range of modern banking products to meet the needs of individual customers, business entities, institutions, farmers, and local government units. Established in 1898, it is one of Poland's oldest financial institutions and is presently the largest independent cooperative bank in the country.

Krakowski Bank Spółdzielczy sought to further strengthen the security of the data collected by the bank by implementing a DLP solution. The bank holds sensitive data, including customer information such as account numbers, addresses, and PESEL numbers, which must be securely protected while keeping track of who is working with them, when and where. The institution has already adopted several cybersecurity solutions, such as blocking USB ports, that are in line with market requirements and standards. However, according to a KBS cybersecurity team representative, it is crucial to continually identify and enhance solutions to prevent and effectively address potential threats.

Many industry reports relating to cybersecurity point to the critical problem of data leakage, the source of which are the employees themselves. In addition to the security policies in the bank, which include standards of conduct for employees with documents and computer equipment, it is also vital to introduce automated, professional security solutions. By implementing a DLP solution, we have reached a higher level of data security.

IT Cybersecurity Specialist at Krakowski Bank Spółdzielczy

Holistic Visibility and Effective User Behavior Analysis

When searching for DLP software, Krakowski Bank Spółdzielczy explored the range of products available on the market. After careful consideration, they opted to use Safetica's solution, a widely trusted product that provides data security to organizations in more than 120 countries worldwide.

Before selecting Safetica, we conducted a trial run of the software. We were impressed not only by its DLP capabilities and file protection features but also by the comprehensive analysis of user actions that it offered. This analysis provides valuable insights into the specific operations that employees perform, the websites they visit, and their interactions with various documents, which was a deciding factor in our selection of Safetica.

IT Cybersecurity Specialist at Krakowski Bank Spółdzielczy

Employee Awareness and Education

While employees are aware that their work data is monitored and secured, it's important to note that their web and application activity is also analyzed. Our team tested the new solution on several dozen individuals and found that Safetica made user activity monitoring and analysis much more manageable. The administration console is user-friendly and intuitive, consolidating all information in one place and simplifying the monitoring and analysis process.

IT Cybersecurity Specialist at Krakowski Bank Spółdzielczy

Education is a critical focus for the bank's representatives. They ensure that employees know that stored data's security largely depends on them. Employees are well informed about why certain file operations or visiting particular internet addresses are not allowed. However, in some cases, employees can request specific actions by telling the network administrator their reasons. This proactive approach ensures that the resources of Krakowski Bank Spółdzielczy are better protected, and the employees understand that their compliance contributes significantly to maintaining the required level of security for the employer's and clients' data.