IT security and data loss prevention remain two of the hottest topics in today’s industry. While it is usually assumed that security breaches are because of holes in the system, the main source is much simpler than that: human error.
A study conducted by CompTIA revealed that more than half of many security breaches are human error, and less than half of the same breaches were due to technology failure. This survey interviewed 400 tech professionals and senior executives at U.S. based companies.
The most common sources of human error are “failure to follow policies and procedures,” and “general carelessness.” Both were cited by 42 percent of the companies in the survey.
Three ways to avoid any possible human error mistakes are:
- Conduct mandatory security training
- To some, this may seem obvious. But, surprisingly, only 54 percent of the surveyed companies required IT employees to go through any security training. Conducting mandatory security briefing and training ensures IT professionals are up-to-date on security systems and challenges.
- Create a security manual
- Creating a manual or pamphlet to reference whenever IT professionals have questions eliminates any confusion down the line. Even if the pamphlet just contains policies or procedures to navigate the chain of command, having a plan in writing cuts down on any later confusion.
- Administer regular checkups or “pop quizzes”
- Checkups or pop quizzes are good ways to make sure all employees are up to date on data security protocol. These checkups do not need to be stressful or intimidating, but can be as casual as sending a survey to employees and checking responses.
Data security and management can make or break a company. For this reason, ensuring all employees are up to date on data procedures is vital. While employee security knowledge is important, pairing with a certified ITAD vendor can also cut down on stress.
Although it’s easy to blame devices for data breaches, it’s important to remember the percentage of human error reports. Making sure all employees are current on security protocol eliminates the majority of any human error security mistakes.