2015 Report Reveals Disturbing Trends in Information Security
Shred-it has released its 2015 State of the Information Security Industry report and while larger organisations are finally investing more heavily in policies and employee training, there are still some disturbing trends in data security too.
The annual report is based on the Shred-it Information Security Tracker survey, an Ipsos Reid research study carried out in the United States, Canada, the United Kingdom, Germany and Australia.
What are trends that need to be addressed?
- Small businesses are in big trouble.
The report showed that small businesses are lagging behind large organisations in document security protocols. For example, 66% of UK c-suite executives have a protocol for storing and disposing of confidential data compared to 54% of small business owners. While 81% of large businesses provide staff training on information security policies and procedures at least once a year, only 27% of small businesses do.
- Rise of mobile working brings new data protection challenges.
While larger organisations have shown a measurable improvement on expanding their protocols to off-site environments, with 26% of C-Suite executives reporting that their company has a working from home policy in place, 35% of SMEs have no policy in place for protecting and disposing of confidential information outside the workplace. Consider how flexible working affects document security, and how to reduce the risk of a data breach.
- The fall-out from a data breach can destroy a business.
A data breach has significant financial, reputational, legal, and operational consequences. For example, the average cost of a lost or stolen record is up to £104, and fines of up to £500,000 can be levied for serious breaches of the Data Protection Act. Information should be a priority at every level in a business starting at the board level. Have a data breach plan at the ready so you can respond quickly and effectively.
- Cyber threats are constant and more sophisticated than ever.
In today's connected world, cyber security has become a priority for individuals and organisations.Regularly review and update cyber security policies.The report showed 88% of UK c-suite executives have a cybersecurity policy compared to 41% of small businesses.
- Old habits die hard.
Some companies still use open recycling bins for paper documents, while 40% of small UK organisations and 6% of larger ones surveyed have never disposed of hard drives, USBs and other hardware. But all information – whether it is in paper form or digital form – must be securely destroyed when it is no longer needed. Partner with a reliable document destruction company that provides secure shredding of paper documents and hard drive and e-media destruction.
Download a full version of the 2015 Shred-it State of the Industry Report.