Internal theft disclosure in organizations: Should employees know? ITAMG’s COO Frank Milia and Director of Business Development Charles Veprek tackle this crucial IT asset management question. Learn about best practices for handling internal theft incidents and the importance of transparency in the workplace.
In this insightful video, our ITAM experts discuss the complexities of disclosing internal thefts to employees. Frank shares valuable perspectives on the legal and compliance considerations that organizations must navigate when dealing with theft incidents.
Frank emphasizes the significance of filing police reports and conducting thorough investigations in response to theft attempts. He also highlights the value of “making an example” of employees who attempt theft, underscoring the organization’s commitment to security and integrity.
By balancing transparency with security concerns, organizations can foster a culture of trust and accountability while protecting their assets.
Don’t forget to like, comment, and subscribe to our channel for more expert insights on IT asset management, security, and related topics. Visit our website at http://www.itamg.com to learn more about ITAMG’s services and how we can help your organization optimize its IT asset management strategies.
#ITAssetManagement #CybersecurityBestPractices #WorkplaceTheft #SecurityManagement #ComplianceAndLegal #OrganizationalEthics
Transcript
Charles Veprek
If theft occurs inside of an organization, regardless of the scale of it, do you think that it is a best practice for an organization to disclose that theft internally to all employees, whether or not the culprit was found or not?
Frank Milia
Well, I mean, first of all, part of your incident response, there might be legal and compliance regulations that you need to meet. You might need to be disclosing that theft if it’s breached publicly, never mind to specifically employees. But I’d say there was a theft that didn’t have repercussions. It was known that it didn’t have compliance or legal repercussions. It was known that there was no PII on these systems officially or they were encrypted and otherwise shot down, and there was no reasonable expectation that anyone could get unauthorized access to these devices. I think it’s important for employees to know there are repercussions for theft, that police reports will be filed, investigations will be made, and that, for lack of a better term, that there’s an example being made of employees who are going to take steps to even attempt theft.