More meat on the bones of worries about Instant Messaging. A recent survey found that 81% of IT managers reported a security incident due to Instant Messaging or other ‘greynets’, such as Skype. These incidents cost companies real money – nearly $130,000 annually to be precise. The survey also shows that more users are adopting greynet applications, yet little progress has been made toward combating greynet-related attacks.
This being the case it is all the more vital to tackle the human dimension. Companies that implement ISO 27001 will have clearly communicated policies in place to cover such applications, audit processes to check that rules are being followed and unambiguous penalties for individuals who go against their responsibilities to the company and their colleagues.