The Global Corporate IT Security Risks 2013 survey finds that the volume of different types of incidents that take place to employee mishaps is almost as high as vulnerabilities in company software – with 39 percent of companies reporting the latter.
Approximately 32 percent of respondents reported leaks that took place directly as a result of employee mistakes. However, five types of internal IT security incidents that took place at companies were ‘closely related’ to erroneous employee actions, according to the study by B2B International, in collaboration with Kaspersky Lab.
A slightly lower number of companies — 30 per cent — reported incidents involving the loss or theft of mobile devices at the fault of an employee. Intentional leaks were committed by employees at 19 percent of the companies participating in the survey. Incidents were caused by incorrect use of mobile devices (via mobile email clients or text messaging) at 18 percent of companies surveyed.
At the same time, an average of seven per cent of respondents reported that employee actions were the cause of leakages of critically confidential information pertaining to company operations. Most often, leakages of critically sensitive data occurred when employees were at fault over the loss or theft of mobile devices — nine per cent of respondents reported these types of incidents.
These types of incidents can be eliminated – or at least the risk can be minimised – by taking a set of measures, including educating employees about IT threats, and developing, putting into place, and overseeing the enforcement of appropriate security policies within the company. Another key step is the use of specialised security solutions.
Tuesday, September 24- 2013 @ 0:00 UAE local time (GMT+4) Replication or redistribution in whole or in part is expressly prohibited without the prior written consent of Mediaquest FZ LLC.