Many staff in organisations have unjustified confidence in their understanding of their office’s IT policy, according to a survey commissioned by Clearswift.
The software security vendor commissioned the Loudhouse to conduct a survey on 2000 office workers in various companies across five countries.
Clearswift is particularly concerned with IT security as more information is now exchanged online.
The resulting Security Awareness Report noted 74 per cent of respondents felt they understood their IT policy to safeguard data and avoid security risks online.
In Australia, 38 per cent of respondents received training regarding IT security when they started their jobs while 36 per cent had discussed secure Internet policies with their colleagues in the last six months.
But a third of the people surveyed conceded they have not had ongoing training on IT security policies and half of the respondents had been with their companies for more than five years.
Sixty-two per cent blamed ignorance for IT security breaches that have occurred in their company.
“All too often, a policy is simply a document that is referred to only when something goes wrong – a proof that somebody ‘should have known better’,” Clearswift director, Phil Vasic, said in a statement.
“There is little or no point in having an IT security policy in place unless staff across the business is fully aware of it and, more importantly, understand the reasons why the rules are in place.”