16 Mar 2009

Non-IT staff 'a threat to security'

Untrained non-IT staff represent a threat to security, according to a sector specialist.

A recent survey by the Computing Technology Industry Association (CompTIA) reveals 45 per cent of companies did not adequately test non-IT staff on security last year, an eight per cent fall compared with 2007.

Security breaches are partly fuelled by the rapid adoption of portable devices such as smartphones and laptops, according to Tim Herbert, vice president of research at the company.

He comments: "Security threats grow along with the expanding reach of IT, so non-IT employees need to be continually trained on the latest IT security threats."

Changes in the way information is now generated and distributed means businesses are exposed to new security risks every day, Mr Herbert adds.

Then most common cause of data breach is still human error, the expert concludes.

Mike Spinney, senior privacy analyst at security body the Ponemon Institute, recently claimed firms must take action to enhance protection before the event of a security breach, not afterwards when it is too late.