Tuesday December 2, 2008 5:48 AM AEST
Vulnerability Alerts
SANS
 
Microsoft
 
CERT/CC
 
 
Latest Comments
"Concerned man's comments seem to intimate that if I'm using agents all will be well but the ..."
on Shavlik Technologies to broaden its patch management offerings
by Werner K | Nov 26, 2008 8:36 PM
 
"That will enhance Microsoft Office system, including SharePoint - good platform for enterprise ..."
on Companies have security to consider with in-the-cloud Office
by SGE | Nov 25, 2008 3:29 PM
 
"how many users allow per session? because the digital persona password manager allows only 10 ..."
on DigitalPersona Pro Workstation/Pro Server
by Daniel | Nov 25, 2008 12:14 AM
 
"security through obscurity...shows how detached HIPAA is from reality."
on Privacy breaches causing business instability
by priceOfFishInChina | Nov 20, 2008 1:19 PM
 
"I have been the recipient of Agent.JEN.Trojan through an email suggesting a UPS parcel (including..."
on Trojan disguised as UPS delivery note
by Vincent Laing | Nov 13, 2008 4:01 PM
Job Centre

Workers at risk from ignorance of IT policy

  • Email a Friend
  • Print Page
Workers at risk from ignorance of IT policy
Related Articles
By Clement James
Jul 31, 2007 2:14 PM
Tags: Workers | at | risk | from | ignorance | of | IT | policy
The poll, taken by NETconsent and The Federation Against Software Theft (FAST), highlights that 94 percent of members have IT security policies in place at work, of which almost two thirds (60 per cent) are updated at least once a year.

While this is encouraging news, it is undermined by the fact that more than three quarters (77 percent) of respondents do not check to ensure these policies are understood by staff.

"IT compliance is a legal requirement," said John Lovelock, director general of FAST.

"All board members must take their responsibilities seriously to ensure that organisations are complying with the law. Policies are an important communication tool not only to educate users and remind them of their rights, responsibilities and the consequences of their actions, but also to protect them."

Just under half (44 percent) of respondents claimed that they lacked confidence in their colleagues' understanding of IT policies and as a result, organisations are increasing the risk of policy breaches.

Around 40 percent admit that they have had to initiate disciplinary procedures as a result of a member of staff breaking ICT policies.

The costs of such occurrences can escalate quickly; nearly three quarters (70 percent) of associated costs are spent on putting a case together and attending disciplinary hearings, diverting attention from other more strategic human resources (HR) functions.

Dominic Saunders, operations director at Netconsent, said, "It is surprising that such a high proportion of respondents have concerns surrounding their colleagues' understanding of policies yet still don't have a process to educate and test policy recognition. Effective policy management is fundamental to managing risk and improving compliance.

Copyright © 2008 vnunet.com

 
Ads by Google
Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 
Tripwire - Click here to win an iTouch
 
 
Job Centre Whitepapers
 
Popular Tags
clavister employees enforcement error firewall human management mobile obamas policy records security snooped strategic verizon workers