Symantec report: Many employees are OK with stealing corporate data

Symantec report: Many employees are OK with stealing corporate data

Summary: Here's a headache that IT managers probably already knew about but can now confirm: a lot of employees don't care about protecting corporate data.

SHARE:

Symantec has published some new figures from a global survey that might unnerve many CIOs and IT managers out there.

Based on Symantec's report, What's Yours Is Mine: How Employees are Putting Your Intellectual Property at Risk, the bottom line is that most employees don't worry much about the security of corporate data -- and many of them are just fine with stealing it.

Here are some of the specifics:

  • 50 percent of employees who left or lost their jobs in the last year have kept confidential corporate data, and 40 percent of them admitted to planning to use that content in their new jobs.
  • 56 percent of employees don't believe it's a crime to use a competitor's trade secret information.
  • 44 percent think that a software developer who develops source code for a company has some ownership in his or her work and inventions.
  • 42 percent don't believe it's a crime to reuse those source codes, without permission, in projects for other companies.

One of the problems here might simply be lack of awareness.

For example, researchers found that 62 percent of employees thought it was "acceptable to transfer work documents to personal computers, tablets, smartphones or online file sharing applications." Symantec added that most of them don't bother deleting the data because "they do not see any harm in keeping it."

This could all possibly translate to BYOD (bring your own device) and using other devices for work-related purposes at other times.

Thus, like with security issues surrounding social media and personal devices in the workplace, a little education could go a long way in turning around these concerns -- at least to some extent.

Along with more IT policy education and training, Symantec suggested implementing a data protection policy for monitoring IP usage as well as requiring employees to sign non-disclosure agreements.

For reference, the survey, which was conducted by The Ponemon Institute in October, polled 3,317 individuals in six countries: the United States, United Kingdom, France, Brazil, China and South Korea.

zdnet-symantec-Insider-Threat-infographic-Rev-J-2013-02-06

Image via Symantec

Topics: Security, Data Management, IT Priorities, Legal, IT Policies

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

2 comments
Log in or register to join the discussion
  • great article...

    Very informative and also very scary about how much company data can be going out the door in such BYOD devices. This is exactly why I am against BYOD, as it is difficult enough for many companies to keep track of the devices they provide to their employees, not to mention the fact that employees lose any type of device from time to time. Just look at how many times Apple has lost 'prototype phones' in bars/restaurants, lots of laughs. :)
    sg1efc
  • I smell propaganda

    It probably is a problem, but Symantec has a vested interest in making it look as dire as possible.
    John L. Ries