« previous article | next article in Business »

Enterprises slow to adapt to changing security environment

Firms still not limiting damage of negligent employees

By Leo King, | Published: 11:25 GMT, 19 November 09 | CIO UK

Related Content

News

Features

Opinion and Debate

Businesses are slow to adapt to the changing security environment, according to a major report.

Six in 10 firms lost sensitive data in the last 12 months as a result of the actions of negligent employees, the Ponemon Insitute found. It surveyed 3,000 IT operations and security professionals in the UK, Germany, US and Australia.

Three in ten firms have had data stolen by employees, according to the Worldwide State of the Endpoint Survey.

In spite of these issues, three quarters of firms said their employees could email data outside the company without any trace, and 70 percent said staff could download their data onto a USB memory stick without detection.

Half of businesses cited the lack of skilled security personnel for their failings. And four in ten struggled with the integration of different security systems.

Standard problems also remained prevalent. Eighty-four percent of firms were hit with viruses and malware intrusions, and 55 percent had lost laptops, desktops and other devices. But businesses were better protected against these threats, with over three quarters having anti-malware and anti-virus systems in place.

Alan Bentley, international senior VP at security software supplier Lumension, which commissioned the survey, said: “Businesses need to manage multiple security technologies to prevent sensitive data from walking out the door and malware from coming in.

“This dual threat is proving difficult for most organisations, which are struggling with a lack of skills, budgetary constraints and the growing complexity of endpoint technologies that they need to run in order to reduce their risk at the endpoint.”

Registration is free, and gives you full access to our extensive white paper library, case studies & analysis, downloads & speciality areas, and more.

He recommended businesses bring their different security systems onto endpoint platforms, in order to have “a clear view on where their data lives and is accessed and what threats they are being subjected to”. This needed to be backed up with the right people, process, and policies, he said.

Larry Ponemon, chairman and founder of the Ponemon Institute, added that companies are “racing to adopt” new technology “faster than they can understand” the impact on data security. Three quarters of firms allow their staff to access social networking sites, 61 percent have moved their data into the cloud and 57 percent are utilising virtualisation.

Email Updates

CIO Newsletters: Expert insight, advice and tools for technology, business, leadership and the CIO career.

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

CIO White Papers

Legal risks of uncontrolled email and web use

Exploring the challenges facing IT Mangers today and vital steps to ensure safe internet an email use by employees.

The challenge of strategic alignment

Recent research also shows that many organisations give too much prominence to internally generated KPIs – controlling the controllable – rather than looking outwards at threats and opportunities on the horizon which can ultimately be far more influential on performance.

Six essential steps to successful IT centralisation

This report, based on the real experience of a recent centralisation project, is aimed at those involved in IT strategy within their organisation. It provides some practical insights for CIOs, CTOs, Heads of IT, IT Directors and those involved more closely with the service management function.

Managing email: Exploring common email management challenges (and how to overcome them)

We surveyed 157 IT professionals to understand the difficulties and opportunities faced by email managers. From this we were able to highlight some easy-to-manange solutions to their most pressing problems.

CIO UK - Business - Technology - Leadership

Differentiate your company with complete CRM

Focused on productivity and empowerment and leveraging the natural rhythms people work
What defines Complete CRM? How businesses can better engage customers and users, manage customer transactions, and analyse results to adapt and take advantage of changing business and economic circumstances.

DOWNLOAD

Oracle White Paper

IT Misuse Survey

Complete this survey and you could win a Nexus One.

CIO are running a short survey to discover how UK businesses are managing internet and email misuse in the Enterprise.

COMPLETE SURVEY

Virtualisation - The 'black hole' of security?

Covering the set of issues, ideas and perceptions discussed during a recently held debate about the effect of virtualisation techniques on organisational security. This paper provides a comprehensive account of all the subject matters debated and concludes with key takeaways and IDC recommended actions.

DOWNLOAD

Trend Micro

* *