ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Management Toolkit

Employees are vital link in the security chain

Dawn Kawamoto CNET News.com

Published: 22 Jul 2004 14:10 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Back in the late '60s, Warren Moore was a young man working in the IT department at apparel giant Genesco.

As a prank, Moore rewrote some code for the company's IBM mainframe to allow him to send anonymous messages to co-workers. But his joke inadvertently resulted in his message being inserted into a sales forecast report, which was about to be presented by a Genesco vice president.

"Luckily, they didn't fire me," said Moore, who now serves as an information security consultant for Convergys. "I kept my job, but it got me thinking about computer security, and it got Genesco thinking about it too. They offered all their employees a programme on the dos and don'ts of working with computers."

Genesco was ahead of its time in offering information-security training to its rank-and-file workers. And even today, security experts say very little is being done to educate employees on antivirus techniques and company policies relating to information security.

"People are the weakest link," said Chris Pick, vice president of market strategy at security and systems-management company NetIQ and co-founder of Human Firewall, an educational and informational Web site now operated by the Information Systems Security Association, or ISSA. "Education is the first line of defence."

But apparently not many companies are following that playbook.

Last year, the Human Firewall Security Awareness Index Survey found that 48 percent of the companies participating in the survey had never provided formal security training for their workforce, Pick said. And of those companies that had, only 15 percent provided such training in the past six months. The National Cyber Security Partnership seems to be aware of the problem too. In March, the group urged companies to adopt more security education.

The lack of an informed workforce can be costly for a company, since technology can only go so far in protecting a network, security experts said.

Next

Previous

1 2 3


  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
133 out of 319 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Management


Company/Topic Alerts

Create a new alert from the list below:



Related Jobs

SENIOR PROJECT MANAGER, PROGRAMME MANAGER, PRINCE2, SOUTH YORKSHIRE

The ability to act effectively as a bridge between the technical and non-technical workforce. The Programme Manager will be responsible for providing ...

ICT Transformation Programme Manager

Improving performance by giving managers and employees the tools to maximise their potential and provide the best services possible * People ...

Information Security & Compliance Officer : London : Contract : ASAP

My client a financial client in the city is looking for a information security and compliance officer for a piece of project work and ongoing ...

Discussions

harpless harpless

SAP goes big business

Friday 25 July 2008, 6:17 PM

1 comment
pjc158 pjc158

Will Drizzle rain on Sun's MySql

Friday 25 July 2008, 5:30 PM

1 comment
pjc158 pjc158

Show me the money!

Friday 25 July 2008, 5:18 PM

5 comments
1000186803 1000186803

Some more thought may be required

Friday 25 July 2008, 5:05 PM

1 comment

View All