Figure out best practices to monitor for intrusions (for Notion)

Assign

Updates to Share?

Status

S7 Completed

refer to expertise at :

Get in touch with Info-Sec team and discuss the best solutions available at this moment

wick bot - stats :

Wick bot is essential and can help with people that post the links and flag them.

Intrusion detection - security team - and it’s very hard to know who is compromise.

Education about security and have layers of permissions.

Discord

Enable 2FA.

Disable private messages from none friends (User Settings > Privacy and safety > Turn off the "Allow direct messages from server members”).

Periodically review and remove authorized apps.

Notion

Notion is password protected which means account cannot be accessed without the password.

Notion contents can be prevented from being shared by turning on certain security settings ( Settings and members > Settings > Security and Identity > Toggle on “Disable guest”).

Always make sure to check and remove integrations connected to notion account occasionally.

Notion does not currently offer a two-factor authentication in their account, which means your password is all you need to sign in, but they use Industry standard encryption

📬

Notion Security and Privacy

Security & privacy - Notion Help Center

In this Article Contents Security practices Subprocessors Privacy Glossary The following list was last updated August 9, 2021. We use TLS everywhere, within the data center and out. Your data is encrypted at rest and in transit. We'll notify you within 72 hours of learning about a data breach.

https://www.notion.so/help/security-and-privacy

Notion sharing and permissions

Update 12/12/2022:

It seems like our best bet for getting the tools we need to manage these things is to upgrade our account to the Enterprise plan for some seriously helpful features