In 
Personal mobile devices used for work-related purposes remain one of the main hazards for businesses: 65 per cent of those surveyed saw a threat in the Bring Your Own Device policy.
The B2B International survey in collaboration with Kaspersky Lab is based on 2,895 interviews with IT professionals working in companies from 24 countries across the globe. All respondents had an influence on their companies' IT policies and a good knowledge of both IT security risks and the operation of non-IT divisions of their companies.
Based on the survey results, Kaspersky Lab highlighted the following recommendations, which could significantly increase the level of IT security in any organization.
Investment in security
IT security incidents can cause real financial and reputation damage. These losses can significantly exceed the cost of putting in place IT security tools which would help to avoid leaks of important data, downtime and other unplanned expenses. This is why it is important to invest in the security of the corporate IT infrastructure.
Professional protection and management
It is impossible to cope with the constantly growing number and variety of malicious programs without dedicated tools. Entire groups of cybercriminals are involved in creating and distributing viruses, Trojans and spyware. These people are prepared to invest large amounts of money into developing this dangerous software. Cybercriminals increasingly use vulnerabilities in popular software to infect corporate computers. This means that it is impossible to ensure the required level of security without an effective system which provides software updating and management of the corporate workstations on which this software runs. It is equally impossible to ensure protection without a high-quality anti-malware solution.
Controlling BYOD is important
The regular use of personal mobile devices by employees in their day-to-day work is already commonplace. However, the fact that this situation has become widespread does not make the threats that it brings with it any less dangerous. This means that if a company allows the use of personal devices for work, it needs to use professional solutions to manage these personal devices and protect them against malware.
Policies and training
The development, implementation and systematic enforcement of IT security policies in a company will make a significant contribution to its overall security. Importantly, employees, who very often become the actual sources or agents of serious data leaks, fail to comply with or accidentally violate security policies. This is why it is crucial to focus on informing and training staff in the area of cyber threats and ways of combating them.
Integrated approach
The variety of security threats to the corporate IT infrastructure is so great that
there is no single commercial solution capable of resolving all corporate IT security issues once and for all. Using advanced software to protect and manage the corporate IT infrastructure will make an enormous contribution to enhancing the company's security. However, to safeguard the company against all IT threats, adequate attention should be paid to all aspects of the issue: be aware of changes in the area of threats and the latest protection against them, competently select and implement the necessary hardware and software, maintain a high level of employee awareness, and not just among staff whose work is IT-related. Applied together, these measures will provide the company with truly reliable protection.
Add new comment