According to the results of IT Governance’s Boardroom Cyber Watch 2013 survey, 53 percent of senior executives say employees present the greatest threat to their corporate data and computer systems (h/t Softpedia).
The survey of 260 chief executives, board directors and IT professionals worldwide also found that 25 percent of respondents have been targeted by a “concerted attack” in the past year, though more than 20 percent are unsure if they’re been targeted.
And while the majority of respondents say their board receives regular reports on IT security, 52 percent only receive such reports once a year at most. Only 5 percent say such reports are submitted daily, 11 percent say they’re submitted weekly, and 33 percent say they’re submitted monthly.
What’s more, only 30 percent of respondents say an understanding of IT security threats is a prerequisite for board-level job candidates.
“In the face of the rapid development and deployment of new cyber-threats, such infrequent executive oversight of IT security status seems alarmingly casual,” IT Governance chief executive Alan Calder said in a statement. “Companies are not ignorant of the risks: 77 percent of bosses told us their organisation has a method for detecting and reporting attacks or incidents. However, in the boardroom, many companies still appear too removed from the action for directors to meet their governance obligations.”