[ Friday, January 22, 2016 ]
Cybersecurity: Interesting report recently from the Association of Corporate Counsel. Obviously this shows a great deal of attention, scrutiny, and awareness of the risks of cybersecurity incidents and the need for aggressive and attentive deployment of cybersecurity resources, but I found the page 1 chart particularly interesting: 24% of all incidents are the result of employee error; in second place is the "inside job." Add in the 5th place finisher, the old lost (or stolen) laptop or other device, and roughly 50% of system breaches are purely internal (#3, phishing, could also be blamed on internal actors, at least those who fell for the trick).
What's the best way to address internal risks? Training. Food for thought.
Jeff [8:40 AM]
http://www.blogger.com/template-edit.g?blogID=3380636
Blogger: HIPAA Blog - Edit your Template