Human error is top IT security concern
Human error is the No. 1 IT security issue for U.K. IT directors, according to a poll conducted by YouGov PLC. Of the 212 private-sector IT or telecommunications directors and senior managers surveyed, 86% said they believe their own employees are the most likely cause of security problems.
Human error is the biggest threat, according to 37% of the IT directors. This was followed by employees who consciously ignore security policies, according to 31% of IT directors polled on behalf of network security firm Clavister AB.
Thirteen percent said insufficient training and lack of awareness of policies are to blame. Only 5% cited industrial espionage as a concern.
The findings were similar for all companies, regardless of size of location.
Andreas Asander, vice president of product management at Clavister, said the findings call into question the effectiveness of current IT security products and policies.
"Security policy documents tend to be very long and technical, and not written in a way which has meaning or importance for the average employee," he said.
"For security rules to be adopted, users need to understand why they are important and what the rules mean to them personally and professionally," Asander said.
Asander recommended that companies create simple and easy-to-understand policies. He also urged firms to use more enforcement to deter employees from breaking their security policies.
Reproduced from an article published by ComputerWorld
© ComputerWorld
The original article can be viewed here:
http://www.computerworld.com/action/article.do?command=viewArticleBasic&art...
Permalink Bookmark Digg this story
