Statistics show that owners and users of organizations’ informational assets are the most important source of security problems. Problems are often caused involuntarily. They result from a lack of knowledge regarding relevant corporate policies or a lack of supervision.
When performing their daily tasks, few informational assets owners or users are preoccupied by security considerations. They do not have the reflex to consider the level of confidentiality of the documents they handle, who is authorized to read these documents and how people get access to these documents, etc.
In order to bridge this gap, it is essential for the organization to:
- raise employees’ awareness as to the active role they must play in maintaining security;
- invite employees to report any information security problem they encounter.
|
