I write often about data breaches and corporate responsibility. This survey result strikes directly at the ongoing problem of data breaches every year at companies, hospitals, schools, and government agencies. SC Magazine reported:
"According to the survey of 150 IT security managers and technical staff from enterprises and government departments, 20 percent admitted to cheating on security audits or knowing of a colleague that did. The survey was conducted from April 28 to 30 during InfoSecurity Europe in London... lying on an audit, is like, “driving without a seatbelt.” Doing so is a great disservice to the company, which could experience a data breach."
Yikes! This directly affects the trend with soaring numbers of data breaches last year. And when data breaches happen, they expose consumers' and customers' sensitive personal data -- including yours and mine. I found this interesting too:
"Jonathan Gossels, president and CEO, SystemExperts, a Payment Card Industry (PCI) standard Qualified Security Assessor (QSA), told SCMagazineUS.com in an email Wednesday that he would have thought that the number of those who lie on audits would be even higher than 20 percent."
This makes me wonder how effective PCI compliance really is, and the companies that claim good data security based on passing PCI audits. Some experts believe that PCI compliance is not enough.