Most loyal employees want to comply with the security policies their organizatio

Question

Most loyal employees want to comply with the security policies their organizations define, yet they may feel forced to violate those policies to satisfy their work requirements. Describe a scenario where an employee might compromise a security policy in order to perform a particular job function. Examples of common security policies that may not always be possible to comply with include sharing passwords with coworkers, leaving a computer logged in while the employee is away from the desk, connecting computers to the company network without the latest antivirus software, and providing system access information over the phone or through email without proof of identity by the requester.

Explanation / Answer

Data security practices tend to focus on the risks posed by a computer hacker, while overlooking the risks posed by a colleague in the next cubicle. The vast majority of employees may be trustworthy, but a moment of haste, anger, or greed may transform an employee into a serious threat to the company’s data. There are countless stories in the media about data security breaches caused by employees, such as the following real-life examples:

These examples demonstrate the broad range of employee actions, from unintentional to unlawful, that can compromise the security of an employer’s data. That being said, the risk of intentional theft or misuse of data by employees should not be underestimated.

Related Questions

Navigate

• Browse (All)
• Browse M
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.