Light Dark
November 21, 2016 By Rick M Robinson 2 min read
Data Protection

When it comes to data security, documents matter. Most organizations have invested in tools that enable them to securely manage their sensitive documents. They are struggling, however, to compel employees to use these tools consistently and correctly.

Throughout the IT industry, actual document management and security practices fall seriously short. Malware-infected files frequently penetrate networks and sensitive information often falls into the hands of unauthorized users.

Despite the pervasiveness and widespread use of mobile devices, many organizations lack mobile device management (MDM) capabilities and few enforce their bring-your-own-device (BYOD) policies.

Document Security by the Numbers

According to Accusoft’s “Closing the Document Management Awareness Gap,” study, 90 percent of security teams have some kind of document management system in place, complete with policies and training programs. Only about one-third, however, provide specific security training related to document management.

Roughly another third reported that sensitive documents had been compromised due to poor security strategies, and 43 percent acknowledged that employees don’t always comply with policies. Another 43 percent ranked downloading infected files as a top document security challenge, while 37 percent cited unauthorized sharing of sensitive information was the biggest obstacle and 19 percent said accidental document deletion as the most serious challenge.

The study, CIO Insight reported, surveyed 100 IT managers and 250 additional IT professionals.

Public Awareness Lagging

The public — including your employees — has been slow to grasp the need for document management and security. Until a few years ago, most people associated data theft primarily with personally identifiable information (PII), especially financial data such as credit card numbers. Intellectual property and other corporate assets didn’t cause as much concern.

Only recently have high-profile data breaches introduced the public to the risks and consequences of compromised confidential or sensitive documents. As this awareness grows, training in document security may become more widespread and have a greater impact.

At the same time, the challenges to document management are growing on the technology front — especially due to the now-pervasive presence of mobility and widespread bring-your-own-device (BYOD) practices. About three quarters of organizations have a BYOD policy in place, but only half enforce it at the most basic level by requiring approval of employee-owned devices before they can be used on the job.

Beginning to practice these security policies is a good first step toward corporate and document security. However, there is no single magic-bullet solution to the challenge of establishing and enforcing effective document security and management policies. But that doesn’t mean it’s impossible. Document security is primarily a matter of will, not capabilities.

Learn more about Securing the data that powers your business

 |  | 
Rick M Robinson

More from Data Protection
November 2, 2023

Defense in depth: Layering your security coverage

2 min read - The more valuable a possession, the more steps you take to protect it. A home, for example, is protected by the lock systems on doors and windows, but the valuable or sensitive items that a criminal might steal are stored with even more security — in a locked filing cabinet or a safe. This provides layers of protection for the things you really don’t want a thief to get their hands on. You tailor each item’s protection accordingly, depending on…

November 1, 2023

What is data security posture management?

3 min read - Do you know where all your organization’s data resides across your hybrid cloud environment? Is it appropriately protected? How sure are you? 30%? 50%? It may not be enough. The Cost of a Data Breach Report 2023 revealed that 82% of breaches involved data in the cloud, and 39% of breached data was stored across multiple types of environments. If you have any doubt, your enterprise should consider acquiring a data security posture management (DSPM) solution. With the global average…

October 25, 2023

Cost of a data breach: The evolving role of law enforcement

4 min read - If someone broke into your company’s office to steal your valuable assets, your first step would be to contact law enforcement. But would your reaction be the same if someone broke into your company’s network and accessed your most valuable assets through a data breach? A decade ago, when smartphones were still relatively new and most people were still coming to understand the value of data both corporate-wide and personally, there was little incentive to report cyber crime. It was…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature