THEALE, England--(BUSINESS WIRE)--Clearswift, the global data loss prevention company, today announced the initial results of a survey on enterprise security practices revealing that a staggering 88 percent of businesses polled have experienced an IT or security incident in the last 12 months, with 73 percent of those attributed to internal sources rather than external threats. The “Enemy Within” survey findings underscore the growing impact of the extended enterprise, including companies’ employees, ex-employees, contractors and partners, on IT security.
The Clearswift-sponsored survey was independently conducted by Loudhouse, a UK-based technology and B2B research firm. Polling more than 500 IT decision makers and 4,000 employees in the United States, U.K., Australia and Germany, the survey found that while 70 percent of respondents believe high-profile security incidents such as the Edward Snowden scandal and the Sony Pictures data breach have moved internal security threats up the corporate agenda only 28 percent think internal breaches are treated with the same level of importance as external. In general, insider threats are not malicious, but they should present a greater concern than planned attacks for businesses because around half of employees would be perceived as being capable of causing a breach by accident.
In addition to a general lack of prioritization of insider threats, 14 percent believe they will not receive the same level of attention as external threats until their organization actually experiences a serious data breach due to accidental or malicious activity by an internal source. Furthermore, only 25 percent of employees believe their company does enough to make employees aware of how they should protect sensitive business information, highlighting a potential disconnect between security practices and education.
Initial findings of the survey also highlighted the most common causes of insider-induced security incidents, including:
- 74 percent of respondents believe social media has exacerbated the internal security threat by creating more opportunities for information to leave the organizations.
- 58 percent believe that a general lack of awareness or understanding of data security threats is the main cause, while 56 percent attribute it to increased use of cloud apps.
- 45 percent believe removable storage devices such as USB drives are the biggest internal security threat, with users not following data protection policies and protocols (44 percent) and employee use of non-authorized tools and applications (39 percent) are also viewed as contributors.
“While recent high-profile breaches have begun to shift the spotlight from external to internal threats, many businesses struggle to accept that one of their biggest security risks could come from their own employees,” said Guy Bunker, senior vice president, Products at Clearswift. “Organizations that want to avoid the risk and stress of internal threats can prepare for both accidental and malicious data loss by ensuring that adaptive prevention methods are put in place to stop threats at the root – before they leave an individual’s computer or device.”
Clearswift is trusted by organizations globally to protect their critical information, giving them the freedom to securely collaborate and drive business growth. Our unique technology supports a straightforward and adaptive data loss prevention solution, avoiding the risk of business interruption and enabling organizations to have 100% visibility of their critical information 100% of the time. For more information on Clearswift, please visit http://www.clearswift.com/.