CyberArk, an identity security provider, has issued a new report on employee risk that is a must-read for IT Professionals and executives. The report highlights several findings that are directly related to the risks employees pose to an organization. These risks include:

  • A majority of employees have access to sensitive information;
  • Employees commonly reuse passwords;
  • A majority of employees bypass cybersecurity policies;
  • AI Adoption is creating more security challenges. The statistics in the report are rather staggering:
  • 60% of employees admitted to using a personal device to access work-related information.
    • 45% of employees admitted that they “had” to share a work password with a colleague for legitimate reasons.
    • 43% logged into a public wi-fi-on a work device.
    • 42% admitted to being bombarded with so many authentication requests that they just click “accept.”
    • 40% used a colleague’s work device for their own work.
    • 35% received and clicked on links in a phishing email.
    • 34% lost a personal device.
    • 25% lost a work device.

One conclusion of the report is that “busy employees often prioritize productivity over security.”   As employees, we are all responsible for protecting the data  we access for work purposes. One click could compromise our company’s data. We are all inundated with numerous tasks while simultaneously flooded with vast amounts of data. It is essential to understand that our companies have implemented cybersecurity measures to protect our data and us from compromising it. Respect the measures your employer has implemented, don’t try to get around them, and embrace solid cybersecurity hygiene in the new year.

Photo of Linn Foster Freedman Linn Foster Freedman

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chairs the firm’s Data Privacy and Security and Artificial Intelligence Teams. Linn focuses her…

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chairs the firm’s Data Privacy and Security and Artificial Intelligence Teams. Linn focuses her practice on compliance with all state and federal privacy and security laws and regulations. She counsels a range of public and private clients from industries such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine and charitable organizations, on state and federal data privacy and security investigations, as well as emergency data breach response and mitigation. Linn is an Adjunct Professor of the Practice of Cybersecurity at Brown University and an Adjunct Professor of Law at Roger Williams University School of Law.  Prior to joining the firm, Linn served as assistant attorney general and deputy chief of the Civil Division of the Attorney General’s Office for the State of Rhode Island. She earned her J.D. from Loyola University School of Law and her B.A., with honors, in American Studies from Newcomb College of Tulane University. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.