Ninety Three Percent of Lost or Stolen Devices Contained Work-Related Data Amidst Lack of Even the Most Basic Security Policies
Imation Corp. (NYSE:IMN), a global data storage and information security company, issued new research highlighting that 44 percent of organisations believe a member of their senior management has lost a mobile* device in the last year, whilst 39 percent say senior management had a device stolen. Vanson Bourne conducted the survey of 500 IT decision makers in the UK and Germany to uncover the risks of remote working and inquire into the security measures organisations have in place. The findings also raised concerns over non-senior management employees, with 54 percent of organisations saying a non-senior management employee lost a device, and 49 percent reported a device stolen within the past year.
Even more concerning is that the vast majority (93 percent) of these devices contained work related data, including confidential emails (49 percent), confidential files or documents (38 percent), customer data (24 percent) and financial data (15 percent). Despite the risks, organisations are failing to put in place basic security rules: of those organisations who have, or plan to implement, a remote working or security policy, nearly a third (32 percent) do not specify that devices taken outside the office must be protected with either encryption or passwords. And a quarter (25 percent) does not specify that digital files taken outside the office must be protected with either encryption or passwords.
With over a third of organisations reporting that a device has been lost or stolen in the past six months, the ramifications can be serious. Thirty seven percent of respondents were aware of someone in their organisation having faced disciplinary action due to lost files or work data, and 32 percent were aware of an employee having lost their job as a result within the last year.
However, companies are still failing to control how data leaves the office, with nearly half (48 percent) admitting that they cannot keep track of how employees take data with them, and 54 percent saying that data could be more adequately secured.
“Even amidst continued warnings about data security, and with data breaches making headlines on an almost daily basis, organisations are still not able to secure their intellectual property. The benefits of encryption and password protection are not new, but businesses are simply not enforcing basic security practices,” said Nicholas Banks, Vice President EMEA and APAC, IronKey.
“What’s more, businesses are aware of employees breaking their organisation’s security rules to take work outside of the office (67 percent), yet they are doing nothing to address the issue. These responses highlight a careless attitude toward company devices and data. Employees, including senior management, appear to be unaware of the full impact of data loss, and it is exactly those senior level execs that employees are looking to for education, and action, to prevent sensitive data falling into the wrong hands. Organisations have a duty to secure corporate information and the devices on which it is stored,” Banks added.
[su_box title=”About the survey” style=”noise” box_color=”#0e0d0d”]The research was conducted by Vanson Bourne, an independent specialist in market research for the technology sector. The research consisted of 500 online interviews of IT decision makers in September 2015. All respondents work in organisations with at least 250 employees. 250 of respondents were based in the UK, 250 in Germany. Respondents to this research came from a range of industry sectors. Interviews were conducted online using a rigorous multi-level screening process to ensure that only suitable candidates were given the opportunity to participate. Unless otherwise indicated, results discussed in the main narrative are based on the entire sample.
Vanson Bourne’s reputation for robust and credible research-based analysis is founded upon rigorous research principles and their ability to seek the opinions of senior decision makers across technical and business functions, in all business sectors and all major markets.[/su_box][su_box title=”About Imation Corp.” style=”noise” box_color=”#0e0d0d”]
Imation is a global data storage and information security company. Our products and solutions help organisations and individuals store, manage and protect their digital content. Imation’s storage and security portfolio includes Nexsan™ high-density, archive and solid-state optimized unified hybrid storage solutions; IronKey mobile security solutions that address the needs of professionals for secure data transport and mobile workspaces; and consumer storage solutions, audio products and accessories sold under the Imation™, Memorex™ and TDK Life on Record brands. Imation reaches customers in more than 100 countries through a powerful global distribution network.[/su_box]
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.