But is it a matter of policy?
By Tim Ferguson
Published: 23 August 2007 10:30 GMT
IT managers in small and medium sized businesses (SMEs) blame their fellow workers for online security breaches - despite the fact many SMEs still don't enforce web usage policies.
More than a quarter of European SME IT managers said they believe company employees are responsible for security problems, according to research commissioned by security software company Websense.
The most frustrating problem for IT managers is employee behaviour (cited by nearly a third of managers), followed by security not being high enough on the corporate agenda and then budget constraints.
silicon.com's Full Disclosure campaign - what we are asking for...
silicon.com wants the government to review its data protection legislation and improve the reporting of information security breaches in the public and private sectors.
We are calling for greater public debate and for the government to consider legislation that would require organisations that suffer information security breaches to alert their customers if there is a chance the breach has put individuals' sensitive personal data at risk.
We want to hear your views about this campaign and the issues it raises. Make your voice heard by leaving a Reader Comment below, emailing us at editorial@silicon.com or signing the 10 Downing Street e-petition.
The survey found nearly a third of employees said they need to access sites known to present a high security risk, such as peer-to-peer services and free software download sites.
The extent to which workers use the web is highlighted by the finding that European employees spend an average of around two hours per day online at work, with around half an hour of that spent browsing non-work related sites.
But suspicious IT managers believe the time spent on non-work related sites is actually closer to 48 minutes - or the equivalent of four hours per week.
The survey also reveals 23 per cent of SMEs have web security policies but don't require employees to sign up to them. Another 16 per cent have no web usage policy at all, preferring to trust employees to not put them at risk.
The SMB State of Security survey covered 375 IT managers and 375 employees from companies of between 100 and 250 users in France, Germany, Italy, the Netherlands and the UK.
Ensure purchases comply with company policies and legislation such as WEEE, COSHH, ROHS and REACH. Experience of staff management and leadership ...
Maintain a commercial approach to course development and stay within project constraints. Keep up to date with Health & Safety legislation. Liaise ...
Ensuring Eligibility to Work and Reference systems is maintained to the highest standard to ensure that as a business we are complying with all ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Dell PowerVault DL2100 Powered by CommVault - Spec Sheet
Data Protection Strategies: Deduplication for More Efficient Backups
True Convergence Demands a Communication Service Provider that Embraces a Customer-Centric...
Learn how Performance Metrics for Telcomm Expense Management Drive new ROIs and SLAs
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Mark Crichard Doing business with citizen developers: Beware the legal pitfalls Legal Eye: Make sure your business is protected from potential hazards
Tim Ferguson How CIOs can achieve post-recession success Q&A: McKinsey & Company on living in the 'new normal' business world