Published by BCS.org at http://continuitycentral.com/briefing444.htm
31 March 2008
In Brief:
Sixty-eight percent of employees admit to bypassing their employers’ information security controls in order to do their jobs, according to new research from IT Governance Limited. This finding suggests that, even in some of the most sophisticated and security-conscious organisations, managers are failing to understand the correct balance between the confidentiality and availability of information. By implementing the wrong policies and procedures, they are potentially putting their organisations at risk and may be undermining the legitimacy of information security in employees’ eyes.