What is more stressful than divorce?
Research done by Websense, a content security and data theft protection company, has found that for IT managers the stress of managing their company confidential data is greater than divorce, managing personal debt, or a minor car accident.
Published last year, Websense commissioned independent research firm Dynamic Markets to survey 1,000 IT managers and 1,000 non-IT employees in the US, UK, Canada, and Australia about the latest threats to corporate and personal security, including modern malware and advanced persistent threats (APTs).
The results include:
• 72% said protecting company data is more stressful than getting a divorce, managing personal debt, or being in a minor car accident
• 86% said there job would be in jeopardy if a data risk occurred
• 24% reported that the CEO’s or executive confidential data had been breached
• 34% reported information for compliance being lost
• 34% reported confidential information had been posted on a public website
• 37% reported loss due to employees
Websense Senior Director of Product Marketing Tom Clare said the survey shows that companies need to recalculate their assumptions about how well their data is protected. “When asked about real-time protection solutions in place, many respondents listed product and vendor names that don’t offer real-time protection at all, Clare said.
I think the statement above identifies part of the problem. Companies buy security software that as excellent as it may be, does not provide a comprehensive solution. According to the Ponemon Institute, overall 70% of data breaches were due to a mistake or malicious intent by an organization’s own staff. These ‘people’ problems are at the center of issues stemming from the inability to correctly, accurately, non-subjectively, and consistently tag content. From this, a ripple effect happens, not only is content compromised in terms of privacy, but compliance, legal, eDiscovery, Records Management, Information Governance, all are affected by this, increasing the risk to an organization. So the problem keeps going around and around in circles.
We do not provide a security solution. Although, conceptTaxonomyWorkflow does work in conjunction with security applications to catch ‘PXX’ (any privacy or organizationally defined confidential information) in real-time. We also eliminate end-user involvement in the tagging process, unless they are specifically authorized.
The innovative solution is fully customizable to address all aspects of data privacy that are unique to the organization. The technology identifies PXX found within content through advanced meta-tagging and automatic classification. Once identified, the organization can have the potential exposures automatically routed to specific or multiple locations for disposition. PXX can be identified as content is created or ingested from within:
* Scanned documents
* Microsoft Office Applications
* Servers and PC’s
It’s also a great tool for migration of content. But that’s another story.