Survey Finds Human Error As Biggest Security Risk
Feb 12, 2009 9:52 AM
According to Deloitte's 6th annual Global Security Survey, people are the problem when it comes to keeping things secure.
"[P]eople continue to be an organization's greatest asset as well as its greatest worry," Adel Melek, global leader of security and privacy services at Deloitte Touche Tohmatsu, said in the report. "That has not changed from 2007. What has changed is the environment. The economic meltdown was not at its peak when respondents took this survey. If there was ever an environment more likely to facilitate an organization's people being distracted, nervous, fearful, or disgruntled, this is it. To state that security vigilance is even more important at a time like this is an understatement."
According to InformationWeek, Deloitte's survey, drawn from major financial companies around the globe, focuses on governance, investment, risk, use of security technologies, quality of operations and privacy. It includes some good news -- external breaches have declined sharply over the past year -- and troublesome news -- fewer companies say they have the commitment and funding to address regulatory compliance.
In terms of risk, specifically information systems failure, people are identified as the most significant vulnerability. "Human error is overwhelmingly stated as the greatest weakness this year (86 percent), followed by technology (a distant 63 percent)," the report states. It attributes the rising risk to increased adoption of new technologies and social networking.
In 2008, data breaches caused by human error declined, the Identity Theft Resource Center said to InformationWeek. Nonetheless, such breaches accounted for 35.2 percent of incidents with reported causes.
Survey respondents cited viruses and works, e-mail attacks and phishing/pharming as the most common cause of repeated occurrences of external breaches. But organizations are improving dealing with these threats because the percentage of companies reporting repeated incidents arising from these causes fell last year.
External breaches arising from viruses and worms affected 15 percent of respondents in 2008 and 43 percent in 2007; external breaches arising from e-mail attacks affected 24 percent of respondents in 2008 and 57 percent in 2007; breaches arising from phishing/pharming affected 7 percent in 2008 and 38 percent in 2007.
Want to use this article? Click here for options!
© 2012 Penton Media Inc.
Today's New Product
|
Privaris Biometric Verification SoftwareIn support of the Privaris family of personal identity verification tokens for secure physical and IT access, an updated version of its plusID Manager Version 2.0 software extends the capabilities and convenience to administer and enroll biometric tokens. The software offers multi-client support, import and export functionality, more extensive reporting features and a key server for a more convenient method of securing tokens to the issuing organization. |
advertisement
This month in Access Control
- Targeting The Customer
- Electronic Pedigrees
- One Hero Among Many
- Who? What? When? Where? Why?
- More from September's issue
Latest Jobs
advertisement