Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecuritySecurity NewswireSecurity Leadership and ManagementCybersecurity News

Study Exposes Employee Negligence as Top Information Security Risk to U.S. Businesses

cyber 3 responsive default
June 21, 2018

 With one-third of working adults in the U.S. admitting to potentially risky behavior at work, employee negligence poses major security concerns for U.S. businesses. That is according to Shred-it's State of the Industry Report, which exposes information and data security risks currently threatening U.S. enterprises and small businesses and includes survey findings from the Shred-it Security Tracker, conducted by Ipsos. 

When assessing the cause of data breaches, the report found that employee negligence or accidental loss is a main cause. Nearly half of C-Suite Executives (C-Suites) (47 percent) and Small Business Owners (SBOs) (42 percent) reported that human error or accidental loss by an employee was the cause of a data breach. Additionally, one in four C-Suites (28 percent) and one in five SBOs (17 percent) reported human error or accidental loss by an external vendor caused their organization to suffer a data breach. 

"The study's findings clearly show that seemingly small habits can pose great security risk and add up to large financial, reputational and legal risks," said Monu Kalsi, Vice President, Shred-it. "For companies looking to better protect their data, smart information security begins with giving employees access to smart information security practices and training. Through consistent training and education, businesses of all sizes can take back ownership of information security and create a more security-minded work culture among their employees."

The study also found that 78 percent of C-Suites and just over one in four (28 percent) SBOs plan to train their staff on information-security procedures and policies over the next year. Additional findings from the report expose high risk areas and activities businesses should consider examining, including:

Off-site and remote work habits: When employees work remotely or off-site, businesses believe the odds of a data breach occurring are higher.

  • Eighty-six percent of C-Suites and 60 percent of SBOs agree that the risk of a data breach is higher when employees work off-site than when they work at the office.
  • However, despite security risk concerns, just 35 percent of SBOs have a policy in place for storing or disposing of confidential information while working off-site, while 54 percent of SBOs have no policy in place at all.
  • A majority of C-Suites have an information security plan in place. These respondents reported that they train employees on keeping sensitive information out-of-sight when working in a public space (81 percent), sharing company-issued electronic devices with family or friends (60 percent), keeping company-issued devices safe from interference from children or pets at home (56 percent), using public Wi-Fi (54 percent), identifying fraudulent emails (71 percent), and providing guidance on how to report a lost or stolen electronic device (73 percent).

Physical document security: From loosely stored confidential notes on a desk to the theft of paper documents while working off-site, U.S. employees create vulnerable paper trails.

  • Most U.S. workers (65 percent) admit they take notes at work in a paper notebook. Additionally, two in five (39 percent) admit they leave these work documents or notebooks on their desk after they leave the office for the day, leaving documents with confidential information vulnerable to theft.
  • Thirty-six percent of C-Suites admit employees lost or had paper documents with sensitive company information stolen, compared to just six percent of SBOs.
  • As workers continue to turn to pen and paper to take confidential business notes inside and outside the office, the good news is that 96 percent of C-Suites say they have a policy for storing and disposing confidential paper documents. However, just 49 percent of SBOs report that they have a paper policy in place.

Device use: Bad employee habits are bad news for businesses, as U.S. workers are losing computers and mobile devices and/or leaving them vulnerable to theft.

  • One in four U.S. workers (26 percent) leave their computer on and unlocked when they leave work for the day.
  • Around half of C-Suites indicate that they have had employees who lost or had their company laptop/device (49 percent) or company mobile phone (43 percent) stolen. Comparatively, SBOs were much less likely to report employees had lost or had their company laptop/device (7 percent) or company mobile phone (9 percent) stolen.
  • One in five C-Suites (17 percent) and SBOs (18 percent) suffered a data breach due to an employee losing or having sensitive information stolen.
KEYWORDS: cyber security data theft security risk assessment security risk management

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Cybersecurity
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Columns
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    Cybersecurity Education & Training
    By: Charles Denyer
Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Pills spilled

More than 20,000 sensitive medical records exposed

Laptop in darkness

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

White post office truck

Department of Labor Sues USPS Over Texas Whistleblower Termination

Computer with binary code hovering nearby

Cyberattacks Targeting US Increased by 136%

Internal computer parts

Critical Software Vulnerabilities Rose 37% in 2024

2025 Security Benchmark banner

Events

September 29, 2025

Global Security Exchange (GSX)

 

November 17, 2025

SECURITY 500 Conference

This event is designed to provide security executives, government officials and leaders of industry with vital information on how to elevate their programs while allowing attendees to share their strategies and solutions with other security industry executives.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • cyber 2 responsive default

    Employees’ Security Hygiene Getting Worse as Ransomware Exposes Insider Negligence

    See More
  • digital

    Cyber Risk Rises as Businesses Rush to Embrace Digital Transformation

    See More
  • Employee Theft Security Magazine November 2017

    Employee Theft Costs U.S. Businesses $50 Billion per Year

    See More

Related Products

See More Products
  • databasehacker

    The Database Hacker's Handboo

See More Products
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing