Security News > 2020 > August > 25% of IT workers don’t enforce security policies

Four in five workers report always following their company's IT policy, meaning that just 20% of workers are driving all shadow IT activity in the enterprise.

"Most of us follow the rules, but a small group of employees trying to get more done circumvent policies and create openings for credential attacks. They're sometimes enabled by IT workers who empathize with their pursuit of productivity."

IT workers cited lack of suitable technology resources and concern for employee effectiveness as the reason nearly one in three IT workers are not fully enforcing security policies.

Twenty-five percent of IT workers say they don't enforce security policies universally and 4% don't enforce those policies at all due to the hassle involved with managing policies to concerns over workforce productivity.

Thirty-eight percent of IT workers who do not strictly enforce security policies said their organization's method for monitoring is not robust, while 29% agreed "It's just too hard and time consuming to track and enforce" and 28% said "Our employees get more done if we just let them manage their own software."

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/9SX1ISdkPnQ/