The conventional wisdom has always been if you want to get people to think seriously about security, you have to put it in the context of the bottom line. But that might not be the best approach after all.
Getting regular employees to obey IT’s security policies is tough enough. But things get even more difficult when dealing with executives – who, as it turns out, are making plenty of security mistakes on their own.
IT pros often complain that management doesn’t understand the true impact of lax security. But a recent survey shows why some of the blame may lay with IT itself.
IT pros know the drill: Offering security training for end users is critical because it’s often their mistakes that lead to data breaches. But too often, companies don’t focus their security awareness efforts where it has the biggest impact: