sb-nz logo
Story image

Employees worry about security but don't do anything about it, survey finds

There is a significant disconnect between an employees’ growing concern over the security of their personal information and their attitudes toward data security practices in the workplace, according to SailPoint’s annual Market Pulse Survey.

The global survey, which was commissioned by SailPoint and conducted by independent research firm Vanson Bourne, looks at how employees view their individual role in IT security processes, and what (if any) improvements are being made by organisations to adapt to the new business realities.

The survey found that 85% of employees would react negatively if their personal information was breached by a company. Yet these same employees are exposing their employers to the same data breaches through negligence and poor password hygiene, the survey found.

Additionally, it highlights an ongoing challenge for IT and security professionals: 26% of employees admitted to uploading sensitive information to cloud apps with the specific intent to share that data outside the company.

Key findings from SailPoint’s 2016 Market Pulse Survey include:

Poor password hygiene continues to plague enterprises. The majority of respondents (65%) admitted to using a single password among applications, and one-third share passwords with their co-workers.

Employees don’t assume responsibility for protecting the integrity of corporate security processes. One in five employees would sell their passwords to an outsider. Of those who would sell their passwords, 44% would do so for less than $1,000. This is up from one in seven who would sell a password a year ago, according to the report.

Organisations are struggling to keep up. One in three employees admitted to purchasing a SaaS application without IT’s knowledge (a 55% increase from last year’s report). Alarmingly, more than 40% of respondents reported having access to a variety of corporate accounts after leaving their last job.

Kevin Cunningham, SailPoint president and founder, says, “This year’s Market Pulse Survey shines a light on the significant disconnect between how employees view their personal information and that of their employer, which could also include personal information of customers.

“Today’s identity governance solutions can alleviate the challenge of remembering several passwords and automate IT controls and security policies, but it’s imperative that employees understand the implications of how they adhere to those policies. It only takes one entry point out of hundreds of millions in a single enterprise for a hacker to gain access and cause a lot of damage.”

Story image
Zoom to begin rolling out end-to-end encryption
Available starting from next week, it represents the first phase out of four of the company’s greater E2EE offering, which was announced in May following backlash that the company was lax on its security and privacy.More
Story image
SOC as a Service: Fortinet’s answer to today’s network challenges
Jon McGettigan, Fortinet A/NZ Regional Director, explains how SOC as a Service can back up your current SOC team, fast-track deployments and ensure regulatory compliance.More
Story image
BayCom partners with NICE inContact to offer cloud contact centre platform in NZ
“With our extensive experience in the industry, BayCom has the ability to design, implement and support CXone nationwide, providing organisations with an industry-leading Contact Centre as a Service (CCaaS) solution to deliver on their customer experience strategies.”  More
Story image
Why best-practice threat data management provides confident automation
Understanding an organisation’s threat landscape requires having both the right threat data sources and the proper prioritisation to derive actionable threat intelligence for your organisation. More
Story image
Research: Younger cybersecurity pros more fearful of being replaced by AI
According to the findings, 53% of respondents under 45 years old either agreed or strongly agreed that AI and ML are a threat to their job security, despite 89% of this demographic believing that it would improve their jobs.More
Story image
Palo Alto Networks extends cloud native security platform with new modules
Palo Alto Networks has announced the availability of Prisma Cloud 2.0, including four new cloud security modules, thus extending its Cloud Native Security Platform (CNSP). More