CISOs see insiders as greatest 'human threat' to data security
Wednesday, June 24, 2009
The vast majority of chief information security officers surveyed at a CISO summit this month said that insiders are the greatest human threat to data security, while only 18 said they are concerned about threats from external sources such as cybercriminals and corporate spies.
The survey by NetWitness Corporation and MIS Training Institute revealed that 80 percent of CISOs and CSOs feel insiders are the greatest human threat.
Sara Hook, conference director at MIS Training Institute, said the survey findings are "alarming," in that there is a "misperception that traditional security approaches alone can protect against information leaks and that some CISOs were not sure what they need for data protection or were not planning to focus any money in that area this year."
Although CISOs are at least thinking about insider threats, another recent survey of business managers found that executives seemingly don't think about insider threats to data security from ex-employees.
A Courion Corporation survey revealed that 93 percent of business managers are confident that terminated employees pose no risk to their network security, even though many have limited knowledge of the systems to which their employees have access.
Courion said companies show "unwarranted confidence" that their systems are secure from former employees gaining access through "zombie accounts."
Related News:
Don't worry about network security: Nine-year-old Marko's got your back - 1.22.2010
Marko Calasan is a Macedonian IT whiz and systems administrator who remotely manages a network of computers owned by a nonprofit that helps connect people with disabilities. Not much of a story, except for the consideration of Calasan's age: He's nine years old.
Apple releases patches for OS X security flaws - 1.21.2010
Vulnerabilities in OS X 10.5 and 10.6 were addressed in Apple's first security update of 2010, patching a dozen known security holes in the Mac operating system.
British university slammed by unknown virus - 1.21.2010
Network security at the UK's University of Exeter was breached by an unidentified virus on Monday, taking down the entirety of the institution's computer capacity and, local paper the Express and Echo reports, even spreading to the school's telephone network.
Pioneering CEO of Real Networks steps down - and some say 'good riddance' - 1.19.2010
Rob Glaser, the controversial head of Real Networks, stepped down from his position last week amid comment from all corners of the tech world, but critics say that not enough accounts mention Glaser's record of spreading intrusive software.
Gmail improves network security for clients - 1.14.2010
Secure HTTP access to Google's free Gmail service is now active by default, the company announced earlier this week, making Gmail messages less susceptible to unauthorized access.
|
