You are here: silicon.com > Software > Security Strategy

Security Strategy

Proof: Employees don't care about security

By Will Sturgeon

Published: Thursday 16 February 2006


Email story to a Friend | Report Abuse

Name

Mark Nicholas


Location

UK


Occupation

Security and Business Continuity Consultant


Comment

Dear Merlin. You've obviously missed the point. Social Engineering is all about circumnavigating common sense to use tactics to obtain information. Of course people aren't going to hand over keys etc because they have personal ownership over them and they also appreciate the consequences or impact. Now, lets consider 'fatmans' comments that the data doesn't belong to them. You therefore need to educate them, because if the business isn't responsible, who is? Are you going to leave it to every individual employee to use their common sense?? No chance, that's what anti virus etc is for, to remove the doubt, that's the business being proactive. Which is what information security primarily is, 'Proactive Risk Management'. You assume too much of an employee. They want to do their role without worrying about this stuff and where they do they need education, then as a final slap, to use the Corporate Policy on them, because if you're into disciplinary, you've failed already as they must have already committed a breach.


Previous comment
Next comment

Post a comment

Back to Proof: Employees don't care about security


Reader Comments

If no corporate details were gathered during this ...
Anonymous

It's interesting to say that 'Employees Don't Care...
Mark Nicholas

Excuse me, but it's not the responsibility of any ...
Merlin

Users generally don't care about security because ...
fatman

Dear Merlin. You've obviously missed the point. So...
Mark Nicholas

Dear Merlin. You've obviously missed the point. So...
Mark Nicholas

They don't understand. If you ask those same empl...
Scott Hollingsworth

The companies were probably identified by the IP a...
Anonymous

That is why you should lock down "user" computers ...
Anonymous

I'm sure they logged the IP address from their cen...
Anonymous

A wild guess would be: By the IP-address of the co...
Tom Schultz

I used to work support for my organization's equip...
IT Guy

This proves nothing.
Anonymous

Wow. Scary but understandable.
Jan D

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

The Round-Up The Weekly Round-Up: 03.12.09 'Ere guv, you'll never guess who I had in the back of my cab the other day…'

Stuart Roberts Shared services - how to get it right in your business Recession boosts uptake

Happy Christmas for retailers as UK shoppers shell out £5bn

Whitehall's G-Cloud gets clearer

Green light for UK IT skills school to arrive next year

IT gender pay gap getting worse

Facebook, Google, eBay urge Mandelson to abandon copyright plan


Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

Cultivating Risk Intelligence for Competitive Advantage

JD Edwards Spotlight Video

CEO Dashboard Management: Why Creating Visual Reports You Can't Hide From Will Help...

Accounting Firm Boosts Productivity Through Rapid Adoption of Easy-to-Use CRM Solution



Quick Sitemap Links: