Employees Have 'Little Or No Awareness' Of Corporate Security Policy

A new study has revealed that a majority of IT security administrators don't think that employees have sufficient understanding of security policies deployed within organisations.

A survey of 2400 IT administrators worldwide (450 in the UK), conducted by Check Point and the Ponemon Institute, revealed that more than half of them doubted the knowledge of employees when it came to adhering to IT security policies.

48.8 per cent of respondents believed their company's employees had 'little or no awareness' about data protection or corporate policies.

The primary reason behind this is the growing complexity of enterprise IT security policies and systems which are struggling to cope with the emerging communication and collaboration technologies.

Many respondents believe that a one-on-one approach for explaining IT security policies to employees was more effective than a collective approach. According to IT Pro, 52 per cent of the respondents said that identity awareness measures by organisations could help in giving each and every employee a proper understanding of IT security policies.

Dr. Larry Ponemon, chairman and founder of the Ponemon Institute, said in a statement, “Employees can play a big role in being a first line of defense, helping their company enforce stronger security measures and promoting more user awareness within the organization.”

The survey, conducted in February 2011, interviewed 2400 IT security administrators, across 14 different industries in the UK, US, Japan, Germany and France.