Connect with us

Hi, what are you looking for?

HEADLINES

One person in four risks sharing confidential work-related information

New figures show that 24 per cent are unsure whether the information they are working with is confidential or not. This means that information that ought not to be shared with others outside the organization risks leaking out, without the employees being aware of the hazard.

Photo by @wocintechchat from Unsplash.com

A new survey carried out by KnowBe4 Research shows that nearly a quarter of employees are unsure whether the information they are working with is confidential or not. “Indicates poor training and follow-up by management,” is the verdict of Research Director Kai Roer.  

KnowBe4 Research investigates the IT security culture of companies worldwide. They carry out continuous surveys to see how companies and organisations handle IT security and training. 

Management responsibility 

New figures show that 24 per cent are unsure whether the information they are working with is confidential or not. This means that information that ought not to be shared with others outside the organization risks leaking out, without the employees being aware of the hazard. 

“Managers have a responsibility to train their staff to treat the information they are working with in a good way. That as many as a quarter of employees are unsure about this indicates a considerable failing in many companies,” says Roer. 

If confidential information falls into the wrong hands, it could harm the company in a variety of ways. Some information could be market sensitive, some could impact the organization’s reputation or breach data privacy regulations, while leaked log-in information could give cybercriminals access to business-critical internal systems. 

Construction, education, transport and retail sectors most at risk 

There are considerable differences between different business sectors. In the construction, education, transport and retail sectors, as many as 34–35 per cent say they are unsure about the status of the information they are working with. 

Advertisement. Scroll to continue reading.

In banking and finance, on the other hand, the proportion is down at 16 per cent. 

“We also see the same tendency in the annual security culture report. Sectors like banking and finance are, on the whole, more used to dealing with confidential information and probably have better routines and procedures for this. We see a clear link between the various aspects of security culture. The organizations that do well in one area, generally also do well in other areas. Unfortunately, IT security is equally important for everyone, regardless of business sector. This has been demonstrated by a series of cyberattacks in Norway over the past year,” says Roer. 

Constant follow-up 

A great many workplaces include non-disclosure agreements, specifying what can and cannot be shared, in their employees’ employment contracts. 

“These figures indicate that the issue has generally not been properly explained to or followed up with employees. When someone starts a new job, they are given access to a lot of information. It is the manager’s responsibility to follow up and ensure that their employees are confident in their role and know how to handle the information they encounter. It is equally important to ensure that employees handle confidential information correctly as time goes on. It is not enough just to provide training when people join the organization,” says Roer.  

Constant follow-up and training in the practice of IT security is needed to refresh employees’ awareness and keep them up to date with the latest developments. 

“Cybercriminals are working constantly to develop more cunning methods of attack. In addition, things can happen within the company to change the situation, which employees must be made aware of,” says Roer in conclusion.  

The survey was carried out by KnowBe4 Research, the Norwegian research arm of the IT security company KnowBe4. A total of 408,929 respondents worldwide, including across Asia Pacific took part in the survey, which was carried out in May 2021.  

Advertisement. Scroll to continue reading.

Advertisement
Advertisement

Like Us On Facebook

You May Also Like

SOFTWARE

MicroWorld's latest offering aims to reinvent cybersecurity in the face of an ever-evolving threat landscape, especially in light of the ongoing pandemic. The cyber...

HEADLINES

When you compare the immense financial losses that a breached company suffers with the much smaller-scale financial transactions taking place on these criminal forums,...

HEADLINES

The vast majority (70%) of all IT teams said the number of phishing emails hitting their employees increased during 2020. This rose to 82%...

BUSINESS

While digital cultures are thriving, senior executives are underestimating the amount of innovation they will need, as competing in the marketplace will still mean...

HEADLINES

Globally 66% and in APJ 67% of businesses believe they are data-driven but only 21% globally and in APJ testify to treating data as...

HEADLINES

Gootloader uses SEO optimization and social engineering, a combination that is not commonly seen in malware delivery. The usually recommended safety instructions to overcome...

HEADLINES

According to WorldRemit, there are four industry-wide scams that Filipinos should be aware of this 2021: “email scams, online dating scams, shopping scams and...

HEADLINES

The process of renewals and new license ordering for partners and distributors is now automated and can be done in a few clicks instead...

Advertisement