Understanding Web 2.0 security in the workplace
- Web 2.0 tools significantly lower the security posture of their organisations
- Viruses and malware are common problems for insecure use of Web 2.0 applications, but not the only concern for businesses
- Most IT administrators do not believe their organisations have sufficient resources dedicated to securing critical web applications
- More security consciousness is needed in order to enable employees to utilise Internet applications, without compromising security. It’s a technological and user awareness issue
1. The impact of Web 2.0 use in the enterprise
82% of IT security administrators surveyed believe social networking, Internet applications and widgets have significantly lowered the security posture of their organisation.
2. Most common problems impacting network security
Respondents cited viruses, workplace inefficiencies, malware and data loss as the top concerns caused by insecure use of Web 2.0 applications in the enterprise.
3. More security consciousness needed
Many respondents believe their organisation's employees do not consider security issues in their everyday business communications - when downloading Internet applications, utilising P2P filesharing sites, opening links, web browsing and engaging in social networking sites.
4. Security accountability
More than half of IT administrators surveyed believe employees play a significant role in mitigating Web 2.0 security risk, followed by CISOs, CIOs, HR and legal departments.
5. Other key characteristics
- 69% of respondents report through corporate IT (CIO or CTO organizations)
- 11% report to the CISO
- 39% of respondents work in larger-sized organizations with more than 5,000 employees
- A majority of organizations are multinational
- 72% of respondents are male, 28% female
- More than 54% are at or above the supervisory level.
Despite greater security awareness, most C-suite executives continue to undervalue CISOs, survey shows.
UK cyber-insurance market still in early days