Role Based Access Control And Cyberloafing




Well, we all know we do it and we love it. Don’t lie to yourself, you too have taken a “what type of donut are you” quiz on either Buzzfeed or some other website that allows you to goof off at work. As we have stepped into a world where memes and funny videos of people getting hit in the face has crept into our daily lives like its routine, many employers are concerned that their employees may be goofing off too much during their work timings.

This goofing off is also referred to as Cyberloafing. The term was actually derived from an old term “Goldbricking” which was the process of coating a metal a lot less in worth with gold. Cyberloafing is specifically referred to employees using internet resources for their personal use. If people in your team watch too much YouTube during the work hours, and use the office internet for person downloads and uploads, you may want to invest in cyber security training. And if that doesn’t work out, you have to look into role based access control.

Role Based Access Control

Role Based Access Control (RBAC) is a way in which computer or network resources are distributed depending on the role of an individual in an organization. Here, the access given to an individual is the ability of a user to complete a specific task such as create, view, or modify a file. The roles are distributed by facts such as authority, responsibility, and competency within an organization.

When resource wastage started becoming a really difficult problem to deal with the workspace, monitoring every individual separately was just not possible anymore. RBAC was the answer to that. With RBAC, an organization’s structure was embedded in the main network that would restrict certain individuals from full access to the resources that they did not require to complete a said job. This also meant that certain software was blocked and administrative privileges were only with a select few in the organization.

Many individuals these days prepare themselves by taking cyber security classes, so they can become professionals of an organization looking for Role Based Access Control. If RBAC is properly implemented in an organization, it allows users to carry out a wide range of tasks that are authorized by regulating actions according to flexibility in functions, constraints and relationships. This is a much better way of carrying out things instead of access control, which was a lot more rigid, object-by-object based method. In RBAC roles can be modified according to the needs of the organization and the task at hand.

The Economic Impact Of RBAC

According to National Institute of Standards and Technologies’ report, it was reported that $1.1 billion were saved globally by implementing RBAC. They analyzed economic value of RBAC for the organization and the national economy, while providing quantitative economic benefits of RBAC per employee. The most impactful fact for organizations is that provisioning and access control policy became more efficient thus reducing employee downtime.’

How It Affects Productivity

It’s natural for people to occupy themselves with doing something and when there isn’t much else to do besides the work assigned, the employees get it done faster. RBAC can also be done timely, for example there can be an hour when employees are allowed full access to the sites they like to visit so that they don’t’ feel too bored and can take a break if they feel like in between.

Although it should be understood that no one should be watching goofy videos or laughing at memes during work, but in the end we are only humans and tend to slip, which is why RBAC can play a good role at regulating how much free time an employee gets throughout their day.

Cyber security training is something that IT related individuals are investing in a lot these days. With apps and businesses always needing safe ways to deploy and secure their networks and organization wanting better productivity out of their employees, organizations are hiring more qualified personnel for the said job. For someone who is just starting in this field, seeking classes to understand how the system works and how they can manage and upgrade it will help them in securing future jobs with some of the best organizations in the world.

About The Author
Muzzammil
Product Manager at QuickStart

Muzzammil Hanif

With over 8 years of experience in the IT industry, Muzzammil is a tried and tested expert at product management. He has a special interest in InfoSec related certifications and courses, and has his finger on the pulse of the latest developments in the cyber security industry. When he is not working, he likes to watch movies and spend time with his family.