But is it a matter of policy?
By Tim Ferguson
Published: 23 August 2007 10:30 BST
IT managers in small and medium sized businesses (SMEs) blame their fellow workers for online security breaches - despite the fact many SMEs still don't enforce web usage policies.
More than a quarter of European SME IT managers said they believe company employees are responsible for security problems, according to research commissioned by security software company Websense.
The most frustrating problem for IT managers is employee behaviour (cited by nearly a third of managers), followed by security not being high enough on the corporate agenda and then budget constraints.
silicon.com's Full Disclosure campaign - what we are asking for...
silicon.com wants the government to review its data protection legislation and improve the reporting of information security breaches in the public and private sectors.
We are calling for greater public debate and for the government to consider legislation that would require organisations that suffer information security breaches to alert their customers if there is a chance the breach has put individuals' sensitive personal data at risk.
We want to hear your views about this campaign and the issues it raises. Make your voice heard by leaving a Reader Comment below, emailing us at editorial@silicon.com or signing the 10 Downing Street e-petition.
The survey found nearly a third of employees said they need to access sites known to present a high security risk, such as peer-to-peer services and free software download sites.
The extent to which workers use the web is highlighted by the finding that European employees spend an average of around two hours per day online at work, with around half an hour of that spent browsing non-work related sites.
But suspicious IT managers believe the time spent on non-work related sites is actually closer to 48 minutes - or the equivalent of four hours per week.
The survey also reveals 23 per cent of SMEs have web security policies but don't require employees to sign up to them. Another 16 per cent have no web usage policy at all, preferring to trust employees to not put them at risk.
The SMB State of Security survey covered 375 IT managers and 375 employees from companies of between 100 and 250 users in France, Germany, Italy, the Netherlands and the UK.
My client is looking for a Systems Administrator to assist with the support of their various in-house systems.You will be responsible for 1-3rd line ...
Must have an extensive knowledge of auditing, quality standards and systems, quality management techniques such as HACCP, Statistical Process Control ...
Analysing results of investigations, reporting any breaches, developing and maintaining relevant and cutting edge policies, standards, procedures and ...
Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Mark McDonald CIOs: Go large for services The bigger the better
Stuart Packham Looking for a job? Look no further Five top recruitment trends