Cost of IT security
By Daniel Hunter
Kaspersky Lab has revealed that most companies assign their own Tech Support Department to train company employees in matters of IT security, rather than hiring outside IT consultants or security professionals.
This is according to the B2B International and Kaspersky Lab, Global Corporate IT Security Risks 2013 survey, carried out among companies located all over the world.
Effective IT security training for employees is a key component of any strategy to combat cyber threats — according to the survey, four out of five of the most common internal security incidents recorded in the past 12 months were directly linked to staff actions:
· 32 per cent of respondents reported accidental leakages of confidential data
· 30 per cent of respondents reported employees losing corporate mobile devices with critical data stored on them
· 19 per cent of companies encountered intentional staff-facilitated data leakages
· 18 per cent of companies had dealt with incidents when confidential data got into the wrong hands due to the improper use of mobile devices (via a mobile email client, text messages, etc.)
Research repeatedly shows that unintentional staff errors are behind a significant proportion of critical data leaks and IT security incidents. The key to addressing this challenge lies in ensuring that end users are adequately informed of IT security risks — and how best to avoid them.
While this clearly illustrates the importance of employee education in IT security, the question remains: who exactly should provide that training?
As B2B International’s experts determined, most companies believe that an organisation’s in-house IT Department should train company employees in IT security matters – even though staff education is not one... continued on page two >