Data security …

being neglected by employees.

More employees are ignoring data security policies and engaging in activities that could put a company at risk, according to a survey released by Ponemon Institute on Wednesday.A large number of employees copy secure data to USB drives or turn off security settings in mobile devices like laptops, which could put a company’s data at risk, according to the survey. The rate of noncompliant behavior was worse in this most recent survey compared to a similar survey conducted in 2007, Ponemon Institute said in a press release.

Around 69 percent of the 967 IT professionals surveyed said they copied confidential company data to USB sticks, even though it was against the rules. Some even lost USB sticks that store confidential corporate data, but did not report it immediately, the survey said.

The survey also took into account new technologies that could bring rogue software to computers, like social networking. Close to 31 percent of respondents engaged in social-networking practices on the Web from work PCs. Additionally, around 53 percent said they downloaded personal software on corporate PCs, which could increase the risk of bringing malware to the workplace.

Mobile technologies that let employees do more while on the road are contributing to the issue, said Larry Ponemon, chairman and founder of Ponemon Institute, in a blog entry. As the use of mobile devices grows, the inability to enforce data security policies could increase the possibility of data breaches. “I’m seeing a confluence of conditions that appear to be contributing to this challenge to data integrity,” he said.

Some professionals surveyed blamed companies for poor training or ineffective data security policies. Close to 57 percent said their company’s data protection policies were ineffective, and 58 percent said they were not provided with enough data-security-related training. (Source: More employees neglecting data security, survey says – CIO-Security)

Hard to enforce security policies when the IT staff violates it.

Reblog this post [with Zemanta]

About brvanlanen

Just a thirty-something guy currently hanging it up in the greater Green Bay area. My post-high school educational background is mainly in the Information Technology field. Specifically I have an A.A.S. in Computer Network Systems and a B.S. in Information Systems Security, both from ITT Technical Institute, in addition to A and MCDST certifications. In my free time I enjoy spending time with my family, cooking and sports. My Christian faith is also important to me as a Missouri-Synod Lutheran and all my children attend a Lutheran grade school. When it comes to political leanings I am a conservative first and foremost which you will discover rather quickly. As for sports I am a huge fan of the Green Bay Packers.

Posted on June 10, 2009, in computer network, IT Support, Security, Technology, vulnerability and tagged , , , , , , , . Bookmark the permalink. Comments Off on Data security ….

Comments are closed.

%d bloggers like this: