The report of Kaspersky’s global survey of IT business decision-makers reveal how well organizations and workers can collaborate and secure themselves, their clients, and each other against employee data leaks.
According to the Kaspersky Employee Wellbeing 2021 Report, about 45% of organizations prefer not to publicly reveal incidences of employee data leakage, and only 44% of businesses offer IT security training to their employees to prevent such data breaches.
The report’s findings reveal that more than a third (35%) of organizations were unable to offer total security for their employees’ data and experienced data leak incidents. The data from the report is only surpassed by customers’ personally identifiable data, according to the report.
The results of Kaspersky’s global survey of IT business decision-makers reveal how well companies and employees communicate and safeguard themselves, their clients, and each other against employee data leaks.
According to the survey, only 43% of organizations disclosed information about such incidents proactively, and only 12% did so after it was leaked to the media.
Only 44% of businesses have implemented security education and training to ensure that employees have access to crucial information, according to the survey, but more than half (64%) of those businesses have experienced at least one issue with the quality of these services.
Commenting on the report, Evgeniya Naumova, Executive Vice President – Corporate Business, Kaspersky, said, “When an organisation faces a cyber-incident, correct crisis communications are no less important than response and recovery actions. There are ever-present risks of data breaches, and businesses should acknowledge that proactive disclosure is preferable to an expose in the press.”
She added, “Appropriate, accurate, and timely communications, however, not only minimize the potential reputational damage but can also greatly mitigate direct financial losses. To avoid panic or confusion, a company needs to consider developing a clear crisis plan and train employees in advance. Corporate communications professionals and IT security teams should collaborate to exchange information on cybersecurity insights and determine guides, tools, channels, and language that might be helpful to accurately handle both internal and external communications in case of an emergency,”
One of the top three largest issues for organizations when it comes to IT security is compliance of staff and dealing with poor end-user security culture, according to 42% of respondents.
According to the report, 41% of businesses experience informational security infringements on a regular basis, 42% misuse of IT resources, and 38% improper data sharing of data via mobile devices.
To prevent adversaries from penetrating the system, the report recommended measures such as ensuring prompt patching and updating of software, implementing high-grade encryption for sensitive data to better secure employees, and the need for companies to combine reliable protective measures with maintaining security awareness among their teams.