{"id":151179,"date":"2022-02-20T20:57:03","date_gmt":"2022-02-20T17:57:03","guid":{"rendered":"https:\/\/www.enerjigazetesi.ist\/?p=151179"},"modified":"2022-02-20T20:57:03","modified_gmt":"2022-02-20T17:57:03","slug":"uzaktan-calismada-veri-guvenligini-saglamanin-10-altin-kurali","status":"publish","type":"post","link":"https:\/\/www.enerjigazetesi.ist\/en\/uzaktan-calismada-veri-guvenligini-saglamanin-10-altin-kurali\/","title":{"rendered":"(Turkish) Uzaktan \u00c7al\u0131\u015fmada Veri G\u00fcvenli\u011fini Sa\u011flaman\u0131n 10 Alt\u0131n Kural\u0131!"},"content":{"rendered":"

Sorry, this entry is only available in Turkish<\/a>. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.<\/p>

<\/p>\n

Her ge\u00e7en g\u00fcn artan siber sald\u0131r\u0131lar i\u015f d\u00fcnyas\u0131na her y\u0131l 6 trilyon dolarl\u0131k zarar veriyor. Pandemi s\u00fcrecinde uzaktan \u00e7al\u0131\u015fma d\u00fczeni ise veri g\u00fcvenli\u011fini \u00e7ok daha \u00f6nemli hale getiriyor.<\/strong><\/h2>\n

Her ge\u00e7en g\u00fcn s\u0131kl\u0131\u011f\u0131 artan siber sald\u0131r\u0131lar i\u015f d\u00fcnyas\u0131na b\u00fcy\u00fck zararlar vermeye devam ediyor. Gelecek y\u0131l k\u00fcresel \u00f6l\u00e7ekte \u015firketlere 6 trilyon dolarl\u0131k fatura<\/strong> \u00e7\u0131karacak siber sald\u0131r\u0131lardan korunmak<\/strong> ise \"\"pandemi s\u00fcrecinde<\/strong> \u00e7ok daha \u00f6nemli hale geliyor.<\/p>\n

Pandemi s\u00fcreci kamu<\/strong> veya \u00f6zel kurulu\u015flar\u0131n<\/strong> mekan ba\u011f\u0131ms\u0131z \u00e7al\u0131\u015fabilme imkanlar\u0131n\u0131 sorgulamas\u0131na da vesile oldu. Pandeminin ba\u015f\u0131nda bir \u00e7ok firman\u0131n bu duruma haz\u0131r olmad\u0131\u011f\u0131, haz\u0131rl\u0131k s\u00fcrecinde de ciddi i\u015f kay\u0131plar\u0131<\/strong> veya \u00e7al\u0131\u015fanlar\u0131n can g\u00fcvenliklerini<\/strong> tehlikeye att\u0131klar\u0131 g\u00f6r\u00fcl\u00fcrken, haz\u0131rl\u0131k yapm\u0131\u015f olan kurumlar\u0131n faaliyetlerinin asgari seviyede<\/strong> aksad\u0131\u011f\u0131, \u00e7ok daha az zararla s\u00fcreci y\u00f6nettikleri<\/strong> g\u00f6r\u00fcld\u00fc.<\/p>\n

Uzaktan<\/strong> veya mekan ba\u011f\u0131ms\u0131z \u00e7al\u0131\u015fanlar\u0131n<\/strong> kar\u015f\u0131 kar\u015f\u0131ya kalaca\u011f\u0131 riskleri azaltabilmesi i\u00e7in \u00f6nemli ipu\u00e7lar\u0131 verilirken ITserv, hem kurumu hem de \u00e7al\u0131\u015fanlar\u0131n alabilece\u011fi \u00f6nlemleri \u015f\u00f6yle s\u0131ral\u0131yor:<\/span><\/p>\n

Kim nereye ula\u015facak belirlenmeli<\/strong><\/h3>\n

Kurumlar hangi kullan\u0131c\u0131lar\u0131n hangi kaynaklara eri\u015febilece\u011fi, ba\u011flant\u0131 kuracak cihazlar\u0131n t\u00fcrleri ve haklar\u0131n\u0131 net bir \u015fekilde belirlemeli. \u00d6rne\u011fin, kurum taraf\u0131ndan kullan\u0131c\u0131ya verilmi\u015f bir bilgisayara bir \u00e7ok hak verilmi\u015fken, kullan\u0131c\u0131n\u0131n kendisine ait \u015fahsi \u00a0bilgisayar\u0131 \u00fczerinden \u015firket kaynaklar\u0131na eri\u015fmek istemesi halinde kontrol yap\u0131lmal\u0131.<\/p>\n

Uzaktan \u00e7al\u0131\u015fan\u0131n g\u00fcvenli\u011fi sa\u011flanmal\u0131<\/strong><\/h3>\n

Uzaktan, g\u00fcvenli eri\u015fim sa\u011flayan sistemlerin kurum g\u00fcvenlik politikalar\u0131n\u0131 uygulayacak \u015fekilde g\u00fcvenli yap\u0131land\u0131r\u0131ld\u0131\u011f\u0131ndan emin olunmas\u0131 gerekir. Eri\u015fimin u\u00e7tan uca \u015fifrelenerek sa\u011fland\u0131\u011f\u0131 bu y\u00f6ntemde \u00f6zellikle uzaktan eri\u015fim i\u00e7in kullan\u0131lan sistemlerin iyi kurgulanm\u0131\u015f olmas\u0131 \u015fart.<\/p>\n

\u015eifreleme \u00f6nemli<\/strong><\/h3>\n

Kurumlarda g\u00fcvenlik g\u00fcncellemelerinin s\u00fcrekli takip edilip, uygulanm\u0131\u015f olmas\u0131 \u00f6nem arzediyor. G\u00fcncel ba\u011flant\u0131 \u015fifreleme politikalar\u0131n\u0131n kullan\u0131lm\u0131\u015f olmas\u0131 gerekiyor.<\/p>\n

Uzaktan \u00e7al\u0131\u015fman\u0131n g\u00fcvenlik riskleri<\/strong><\/h3>\n

Uzaktan \u00e7al\u0131\u015fmada riskler, kurum i\u00e7inde bar\u0131nan sistemler ve kurum i\u00e7i \u00e7al\u0131\u015fanlara k\u0131yasla daha y\u00fcksektir. Kuruma uzaktan ba\u011flanmak i\u00e7in sunulan bilgisayar\u0131n \u00e7al\u0131nmas\u0131 verileri riske atar. Uzaktan \u00e7al\u0131\u015fmada kurum a\u011f\u0131na ba\u011flan\u0131rken anonim bir a\u011f kullan\u0131lmas\u0131 da tehlike yarat\u0131r.<\/p>\n

Yol haritas\u0131 belirlenmeli<\/strong><\/h3>\n

Uzaktan \u00e7al\u0131sma i\u00e7in kurumsal seviyede bir yol haritas\u0131n\u0131n olu\u015fturulmas\u0131 ve takip edilmesi gerekir. Bunun i\u00e7in a\u011fa ba\u011flanacak cihazlar\u0131n belirlenip eri\u015fim alanlar\u0131 tespit edilmeli.<\/p>\n

\u00c7ok fakt\u00f6rl\u00fc kimlik do\u011frulama yap\u0131lmal\u0131<\/strong><\/h3>\n

Kullan\u0131c\u0131 ad\u0131 ve \u015fifreler \u00e7al\u0131nabilir, s\u0131zd\u0131r\u0131labilir veya oltalama ile elde edilebilir. \u0130nternete a\u00e7\u0131k olan sistemler i\u00e7in tehdit unsuru olu\u015fturan sald\u0131r\u0131lara kar\u015f\u0131 koyabilmek ad\u0131na \u00e7ok fakt\u00f6rl\u00fc do\u011frulama (MFA) eri\u015fim y\u00f6ntemlerini kullanmak riski azalt\u0131r. En s\u0131k kullan\u0131lan MFA y\u00f6ntemlerinden biri, telefona SMS g\u00f6ndermektir.<\/p>\n

G\u00f6lge teknoloji tehdidi<\/strong><\/h3>\n

IT departman\u0131n\u0131n onay\u0131 ve deste\u011fi olmadan geli\u015ftirilip kullan\u0131lan teknoloji \u00e7\u00f6z\u00fcmlerine g\u00f6lge bili\u015fim teknolojileri deniyor. Bunlara \u00f6rnek olarak; bulut (cloud) uygulamalar\u0131, ki\u015fisel cihazlar, excel makrolar\u0131 ve benzeri ara\u00e7lar verilebilir. Bu teknolojilerin kurumun kendisi, kurumun verileri ve kullan\u0131c\u0131 i\u00e7in ayr\u0131 bir zafiyet olu\u015fturup olu\u015fturmad\u0131\u011f\u0131 kontrol edilmelidir.<\/p>\n

\u00c7al\u0131\u015fanlarda fark\u0131ndal\u0131k yarat\u0131lmal\u0131<\/strong><\/h3>\n

Al\u0131nm\u0131\u015f \u00f6nlemlerle kurulu\u015fun en zay\u0131f halkas\u0131 kadar g\u00fc\u00e7l\u00fc olunabilir. Bu sebeple teknik \u00f6nlemlerin yan\u0131nda son kullan\u0131c\u0131 i\u00e7in fark\u0131ndal\u0131k yaratmak, al\u0131nabilecek en kritik tedbirler aras\u0131nda. Evden \u00e7al\u0131\u015fma s\u0131ras\u0131nda ya\u015fanacak riskler hakk\u0131nda s\u0131kl\u0131kla bilgilendirme yap\u0131lmal\u0131.<\/p>\n

G\u00fcvenlik testleri \u015fart<\/strong><\/h3>\n

Pandemi gibi zorlu zamanlarda g\u00fcvenlikten sorumlu personel kurumun farkl\u0131 ihtiya\u00e7lar\u0131na odakland\u0131\u011f\u0131ndan rutin yap\u0131lmas\u0131 gereken zafiyet y\u00f6netimi gibi i\u015fler aksayabilir. Bu gibi durumlarda var olan g\u00fcvenlik seviyesini korumak da kritik hususlardan biridir.<\/p>\n

Alarmlar takip edilmeli<\/strong><\/h3>\n

Yap\u0131da ger\u00e7ekle\u015fen olaylar\u0131 izleme, ara\u015ft\u0131rma ve beklenmedik olaylar sonras\u0131 olay ara\u015ft\u0131rmas\u0131 y\u00fcr\u00fct\u00fclebilecek bir \u015fekilde loglar al\u0131nmal\u0131d\u0131r. Bu sayede olas\u0131 bir ihlal s\u0131ras\u0131nda neler oldu\u011funu anlamak kolayla\u015facak ve olaya m\u00fcdahale s\u00fcre\u00e7leri iyile\u015ftirilmi\u015f olacakt\u0131r.<\/p>","protected":false},"excerpt":{"rendered":"

Sorry, this entry is only available in Turkish. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language. Her ge\u00e7en g\u00fcn artan siber sald\u0131r\u0131lar i\u015f d\u00fcnyas\u0131na her y\u0131l 6 trilyon dolarl\u0131k zarar veriyor. Pandemi s\u00fcrecinde uzaktan \u00e7al\u0131\u015fma d\u00fczeni ise veri […]<\/p>\n","protected":false},"author":1,"featured_media":151182,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[53,157],"tags":[100088,99359,101094,17703,101093,65918,43832],"views":140,"_links":{"self":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/151179"}],"collection":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/comments?post=151179"}],"version-history":[{"count":0,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/posts\/151179\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media\/151182"}],"wp:attachment":[{"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/media?parent=151179"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/categories?post=151179"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.enerjigazetesi.ist\/en\/wp-json\/wp\/v2\/tags?post=151179"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}