Project Management

Please login or join to subscribe to this thread

Protecting Company Knowledge

linkedin twitter facebook   Knowledge Management   Lessons Learned  
avatar
Charles Chapman Babson Park, Ma, United States
A problem that we are currently grapling with is the fact that we want to open up the access to information and documents in our company so that people can always get the information that they need.

The problem is that at the same time we want to protect sensitive data. How have other people walked this fine line and maintained a successful balance?
Sort By:
avatar
Michael Wood Project Manager / Business Analyst / Business Process Improvement Guru| Independent Contractor Gig Harbor, Wa, United States
This is a fine line indeed. I would imagine the goal is to provide people within the orgainziation with the knowledge they need to provide maximum value to stakeholders with the highest possible efficiency. If this is the case, I would start by defining the value streams within the company and then orgainize workers that represent those streams in to focus groups. Start by facilitating them as to where Value-Gaps exist that could be improved through better access to information. This will at least tell you what information needs to be made available and to whom within the company. Once that is known, the level of security needed to protect that knowledge from the wrong people can be decided upon.
Remember this. Security is often a myth. I have seen more proprietary knowledge sitting on FAX machines, on copiers and on white boards than usually can be found in knowledge management systems.
avatar
Lee Lichtenwalner Leetonia, Oh, United States
We're evaluating Microsoft's SharePoint Portal for these very reasons. Thus far, it looks like a winner. We're able to limit information on an individual or group basis through an intranet. It has worked quite well thus far.
avatar
Anonymous
I would cover this one with a legal agreement, non-disclosure type document. Worth having it correctly drawn up with reference to customer lists, engineering blue prints and product information. It should be part of the engagement/employee contract and should be signed by employees and particularly contractors. There is only so far you can suppress information repositories before you interfere with smooth working practices.

Finally in certain jurisdictions it has become popular for enterprise firms to place rehire restrictions on certain employee groups restricting them from working within the industry for periods of time after their engagement has ceased.

[PrinceMate]
avatar
Anonymous
Thanks Michael. so many years later your post is still very valid. In addition applying various access-control policiesand models such as RBAC and usage control (UCON) could help. Trust management is also critical. Knowledge management evolves and the restriction and control measures should also evolve.
avatar
Chad Harris Project Manager III, PMP, MPM, MBA, CLSSGB| Memorial Health System Springfield, Il, United States
We use SharePoint and it works beautifully for restricting access to authorized persons. I also really like the revision version functionality when checking out a document.

Please login or join to reply

Content ID:
ADVERTISEMENTS

"It is hard to fight an enemy who has outposts in your head."

- Sally Kempton

ADVERTISEMENT

Sponsors







Vendor Events

See all Vendor Events

Newsletters

Jun 3: The Career Problem Facing New PMs
May 20: Your PM Career as a Project Life Cycle
May 13: The Big Lie After Layoffs

See all newsletters