I've been assigned a crucial task to enhance our internal security, particularly for the development team. They work on VMs and use their laptops, and my main goal is to prevent any code leaks. I know that achieving total security is nearly impossible, but I'd love to hear suggestions on effective tools or policies for detection and mitigation. For instance, should I block certain ports, restrict uploads and internet access from VMs, or implement DLP software? I'm also considering whether to roll out Microsoft Intune on their laptops. Any thoughts on how to approach this situation? I definitely want to keep the developers happy too!
1 Answer
One straightforward approach would be to stop file transfers from the VMs to the developers' laptops entirely. Make sure the VMs only have access to the necessary code repositories. Also, it's wise to limit their access to just what's essential for their work. Disabling USB stick usage and restricting outgoing email attachments could further enhance security.
Thanks for the tip! I hadn't thought of restricting attachments; I'll add that to my list.