Eugene Kaspersky on the value of paranoia

The biggest security worry for any organisation is the people element, according to Eugene Kaspersky, CEO of malware protection specialist Kaspersky Lab. Speaking with CIO at the Infosec exhibition in London this week, he recounted many instances where the technology and processes set up to protect organisations from malicious attacks were side-stepped by employees not aware of potential vulnerabilities, or working around the security checks for their own convenience.

Even in one of the security expert's own events, the hotel hosting it had suffered an infection in the landing page of its guest internet service.

Kaspersky says: "The staff were protected by our products when they use the internet, so they guarantee the security of the internet on this level but not into the cloud. The employees didn't realise that the homepage was infected, because they don't need to pay for the internet at the hotel. They never see this page."

The story also illustrates Kaspersky's conclusions on cloud services, in terms of security. The biggest issue is responsibility of security of the data. Business critical data won't reside anywhere than on premise for many big organisations, he thinks, because the risk is too much.

This risk assessment about the security of data is ultimately the decision of the CIO, who will have to balance the cost of protecting the data against the damage the organisation suffers if that data is lost or stolen.

Kaspersky believes that the number of enterprise businesses that employ their own malware protection teams will continue to grow, so that the investment in these teams could run up to 2 per cent of total operational expenditure.

Related:
1 2 Page 1
Page 1 of 2
7 secrets of successful remote IT teams