This list will provide a basic outline for what you should be looking for on a daily, weekly, and monthly basis.
DAILY:
We suggest checking for the following issues daily in the product. Remember that automatic warning emails and remediation can be set for any of these to help ease your workload.
β
Self Harm Risks: We strongly suggest checking the Risks Tab for any student generated self harm.
Phishing URLs: Checking the Emails Tab for phishing urls daily, you can do this with the "Emails With Phishing" quick filter to save time.
Malware: Checking the Malware Tab for any active malware can help keep your network, and devices clean.
User Logins: Checking the Summary Tab and Login Analyzer for any signs of compromised accounts.
WEEKLY:
Questionable Drive Usage: Searching the Drive Tab for undesired file types and content is a great weekly practice. Search for executable files (students often hide games, and other software on their drives), movies and other large files. You can easily create filters to find file types, or sort by the size column to find questionable content quickly.
Oversharing: Checking to make sure users are not oversharing files is a great practice weekly. Often times staff users do not understand the implications of sharing files via links rather than explicitly sharing. Doing a weekly check of high profile users (principals, accounting staff, superintendents etc) for oversharing is a great practice. While risk scans catch social security numbers, credit card numbers etc, often times sensitive information can be leaked without containing these information sets.
MONTHLY:
APP USAGE: Checking the App Tab for apps within your domain monthly is a great way to help prevent 3rd party data loss. Making sure that all apps with elevated permissions are approved within your organization. Keep a close eye on apps that have permission to read and send emails, as well as apps with access to users drive files (you can find these in the access levels box in the top right of the apps tab). Remember that when an app has these permissions, they have access to your staff email, and any files they create.
βCredential Leaks: Keeping a close eye on high profile accounts for credential leaks is a great monthly practice. This can prevent data loss through proactive password changes if any of your users accounts are involved in a breach.