Advertisement

We need your help now

Support from readers like you keeps The Journal open.

You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.

If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.

Shutterstock

77 per cent of company data breaches are caused by employees

The survey found that almost a quarter of Irish companies have experienced multiple data breaches over the past twelve months.

MORE THAN HALF of Irish companies have experienced a data breach in the last twelve months, the majority of which are caused by staff members.

A new report from the Irish Computer Society (ICS), which surveyed IT administrators working in 256 Irish-based companies, found that 51 per cent of companies experienced a data breach in the past twelve months, while 22 per cent experienced multiple breaches.

The majority said that staff members were the main cause of data breaches with 77 per cent of incidents caused by “negligent employees.”

Other threats that concerned IT managers were unsecure end user devices, such as unencrypted laptops containing sensitive data, and external attackers trying to obtain data.

When asked about the correct adoption of data protection procedures, more than one in three said that policies are not implemented or are just partially implemented. Only 39 per cent said that its data protection policies were fully implemented.

The report also found that most employees were satisfied with the level of training they received in data protection with 57 per cent saying they received the right amount. 24 per cent of those surveyed said they received no training in this area, while 16 per cent said they received insufficient training.

The Chairman of the Association of Data Protection Officers, Fintan Swanton, believed it highlighted the need for organisations to take steps in managing their company’s data.

Employees might appreciate the importance of data security, but organisations need to instil a culture of compliant data management… It is as much a case of protecting the organisation’s commercial reputation, as it is of protecting the individual’s privacy.

The survey comes after new data protection legislation come into effect. The new legislation will require most organisations to have a Data Protection Officer.

Read: 20 million South Koreans affected by country’s largest-ever data theft >

Read: ’123456′ tops list of worst passwords of 2013 >

Readers like you are keeping these stories free for everyone...
A mix of advertising and supporting contributions helps keep paywalls away from valuable information like this article. Over 5,000 readers like you have already stepped up and support us with a monthly payment or a once-off donation.

Author
Quinton O'Reilly
View 7 comments
Close
7 Comments
    Submit a report
    Please help us understand how this comment violates our community guidelines.
    Thank you for the feedback
    Your feedback has been sent to our team for review.
    JournalTv
    News in 60 seconds