Expert warns of IT security risk posed by 'conscientious workers'

01/06/2009

Firms 'must consider implications' of movable data. Firms 'must consider implications' of movable data.

Businesses and public sector organisations need to carry out thorough security risk assessments should they choose to allow employees to take potentially-sensitive data off-site.

That is according to one expert, who warns that not only can the loss of information impact upon productivity, but that it could also have serious legal implications.

Following on from the news that thousands more patient records have been lost by contractors working for the NHS, Bill Gilliam, head of the health sector group at international law firm Eversheds, explained that bosses need to ensure that all staff are given adequate risk management training when it comes to working with sensitive data.

"All personnel [need to be] fully alive to the risks of breaching data security and take practical steps to minimise the risks, particularly where data is taken off site," he said.

"Ironically, it is often the most conscientious individuals, who are taking work home or working whilst in transit, who represent the greatest risk."

Meanwhile, the Lancashire Evening Post has reported that a memory stick which had its password attached to it on a post-it note and which was lost from Preston Prison is still missing.

Click here for risk management jobs. ADNFCR-1355-ID-19196706-ADNFCR