ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Management Toolkit

Employees are vital link in the security chain

Dawn Kawamoto CNET News.com

Published: 22 Jul 2004 14:10 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Back in the late '60s, Warren Moore was a young man working in the IT department at apparel giant Genesco.

As a prank, Moore rewrote some code for the company's IBM mainframe to allow him to send anonymous messages to co-workers. But his joke inadvertently resulted in his message being inserted into a sales forecast report, which was about to be presented by a Genesco vice president.

"Luckily, they didn't fire me," said Moore, who now serves as an information security consultant for Convergys. "I kept my job, but it got me thinking about computer security, and it got Genesco thinking about it too. They offered all their employees a programme on the dos and don'ts of working with computers."

Genesco was ahead of its time in offering information-security training to its rank-and-file workers. And even today, security experts say very little is being done to educate employees on antivirus techniques and company policies relating to information security.

"People are the weakest link," said Chris Pick, vice president of market strategy at security and systems-management company NetIQ and co-founder of Human Firewall, an educational and informational Web site now operated by the Information Systems Security Association, or ISSA. "Education is the first line of defence."

But apparently not many companies are following that playbook.

Last year, the Human Firewall Security Awareness Index Survey found that 48 percent of the companies participating in the survey had never provided formal security training for their workforce, Pick said. And of those companies that had, only 15 percent provided such training in the past six months. The National Cyber Security Partnership seems to be aware of the problem too. In March, the group urged companies to adopt more security education.

The lack of an informed workforce can be costly for a company, since technology can only go so far in protecting a network, security experts said.

Next

Previous

1 2 3


  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with HP

Did you find this article useful?
132 out of 315 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Management


Company/Topic Alerts

Create a new alert from the list below:



Related Jobs

Security Architect

For full details on nationality requirements, please press the apply button We welcome applications from people of every background so that our ...

Human Resources Officer

The chosen candidate will be providing a full range of Human Resources Employee Relations support and to advise/support line managers with the ...

German Speaking HR Advisor - Professional services firm

Supervising and interpreting selection assessment tests Short listing candidates Interviewing candidates using structured behavioural interviews ...

Discussions

1000221148 1000221148

IT Anthems - should we revive them?

Friday 16 May 2008, 4:51 PM

3 comments
Macbrewer Macbrewer

Not really a security problem

Friday 16 May 2008, 4:17 PM

1 comment
harpless harpless

interesting..

Friday 16 May 2008, 4:06 PM

3 comments
harpless harpless

The game's up for Vista

Friday 16 May 2008, 3:48 PM

1 comment

View All