Oftentimes the biggest risk to your data’s security comes from inside the company…from senior management.
“On the Pulse: Information Security Risk in American Business,” a recent survey by digital risk managers at Stroz Friedberg, revealed that more than half of the respondents don’t think U.S. companies are adequately securing their information (61%). Nearly three-quarters (73%) said a hacker could break into their employers’ computer networks and steal their personal information.
Many respondents admitted to engaging in high-risk behaviors, such as uploading work files to their personal e-mail and cloud accounts (87%) and accidentally sending sensitive information to the wrong person (58%). Senior managers – who typically have high levels of access to valuable company information – were among the worst offenders. Indeed, 87% of senior managers said they upload work files to their personal accounts. More than half (51%) confessed that they have also taken files with them when leaving a previous job. These behaviors mean proprietary information could easily fall into the wrong hands.
The main reason senior managers upload work files to personal accounts, according to the survey, is because they prefer working on their personal computers. As the use of mobile devices increases, it’s clear that employees at all levels in the organization need to be better trained about the potential security risks and current company policies.
First and foremost, though, everyone needs to realize that information security is just as much their responsibility as it is the IT staff’s.