Cyber Security: 60% of Techies Don’t Tell Bosses About Breaches Unless It’s ‘Serious’

A new study has revealed that 60% of IT staff do not tell their bosses about security risks until it has become a matter of urgency.

More than half of IT staff said they will only inform managers when the threat is “serious”, and will also try to filter out negative results, according to a report by US cyber expert Dr Larry Ponemon who surveyed almost 600 individuals working in various sectors of IT.

However, the report claims that senior level executives have a different perception of what constitutes “serious” to their IT counterparts.

Ponemon, author of the study, said: “What is most concerning is that it would seem security in many organisations is based on perception and ‘gut feel,’ versus hard data.”

Overconfidence from those working in IT equates to the bosses being kept out of the loop, when it comes to cyber threats, until it is possibly too late to deal with the risk.

via Cyber Security: 60% of Techies Don’t Tell Bosses About Breaches Unless It’s ‘Serious’.

Author: Daniel Garrie

Daniel Garrie is a renowned computer forensics, e-discovery, privacy, and cyber security expert and thought leader. Quoted in Forbes and profiled in the Los Angeles Daily Journal, he is a frequently retained neutral and Chair of Alternative Resolution Center’s (ARC) E-Discovery and Forensic Dispute Resolution practice. Today, Mr. Garrie is a Partner and General Counsel for Law and Forensics LLC, a boutique legal strategy and forensics firm that works with clients across industries to address privacy, e-discovery and forensic issues in the U.S. and abroad.In the past two years, Mr. Garrie has been involved in over 50 e-discovery matters both in the U.S. and abroad.