Research reveals importance of employee consciousness in Web 2.0 security
ConvergenceAsia staff
19/08/2010

Check Point Software Technologies, the worldwide leader in securing the Internet, and the Ponemon Institute, a leading privacy and information management research firm, have released the findings of a global survey, Web 2.0 Security in the Workplace, revealing that up to 82 per cent of IT security administrators surveyed believe social networking, Internet applications and widgets have significantly lowered the security posture of their organisation. Respondents cited viruses, malware and data loss as the top Web 2.0 concerns, with as many as 77 per cent of businesses planning to implement a solution addressing such vulnerabilities within the next five years.

According to the survey of over 2,100 IT security administrators in countries around the world, the majority of respondents believe employees are essential to helping organisations mitigate security risks associated with emerging Internet applications in the enterprise. However, IT security administrators believe employees rarely or never consider corporate security threats in their everyday business communications - when downloading Internet applications, web browsing, opening links, video streaming, utilising peer-to-peer (P2P) file sharing sites and engaging in social networking outlets. As a result, education and awareness is needed to help end users realise their important role in maintaining the organisation’s security profile.

“Our research finds security can be seen as an afterthought for corporate users of Web 2.0 applications; the growing number and sophistication of security threats, coupled with the proliferation of online and easily downloadable tools, is exacerbating the challenges of protecting sensitive information,” said Dr. Larry Ponemon, chairman and founder, Ponemon Institute. “And while this is an issue that must be addressed through strategic investment in technology and awareness, our research also shows that most IT administrators do not believe their organisations have sufficient resources dedicated to securing critical web applications.”

“It’s clear that IT security administrators are concerned about the impact of Web 2.0 applications in the enterprise, but they also need better tools to understand which applications employees are using for business purposes,” said Juliette Sultan, head of global marketing at Check Point Software Technologies. “Implementing a flexible solution that factors in specific group or individual needs provides the bridge between users and IT administrators, and ultimately encourages employees to be more cautious when web browsing, taking into account corporate security policies.”

Additional key findings from the survey:
Sense of Urgency - Nearly 50 per cent of survey respondents place a high sense of urgency on minimising security risks associated with internet applications and widgets.
More User Accountability Needed - The majority of respondents believe that employees should be held most responsible for mitigating Web 2.0 security risks in the enterprise.
Lack of Education on Corporate Security - An average of 20 per cent of respondents believe employees rarely or never consider security issues when using social networking and Internet applications in their everyday business communications.
Most Common Problems - Workplace productivity, malware and data loss are cited as the most concerning problems of using new Internet applications in the workplace.

The Web 2.0 Security in the Workplace survey was independently conducted by the Ponemon Institute in June 2010, surveying IT security administrators located in the US, UK, France, Japan and Australia. The survey sample represents a wide range of organisations varying in size - from small and medium businesses to large enterprises - and across 12 different industries, including financial, industrial, government, retail, healthcare and education. To view the full report, visit www.checkpoint.com/products/downloads/whitepapers/ponemon_white_paper.pdf.

advertisement