Actions Speak Louder Than Words

Global study involving 1,000 teleworkers in 10 countries reveals contradictory actions - and reasons -- for hijacking neighborsí wireless networks, sharing computers with non-employees, and more

A global third-party study commissioned by Cisco Systems today reveals that while most remote workers say they are aware of security issues, their behavior - behavior that includes sharing work computers with non-employees, opening unknown emails, and hijacking neighborsí wireless networks - suggests otherwise.

Designed to better understand how teleworkersí perceptions and behavior heighten security risks for the global network community, information technology (IT) organizations and the businesses they support, the study revealed responses from more than 1,000 teleworkers in 10 countries. Conducted this summer by an independent market research firm, the study consisted of end-user surveys involving at least 100 respondents in each of the following countries: the United States, United Kingdom, France, Germany, Italy, Japan, China, India, Australia, and Brazil. It spotlights the challenge that behavioral and cultural tendencies create for IT security teams as more employees work outside of traditional offices - a business practice that can enhance productivity yet jeopardize corporate and personal security.

Whether they work at home, at a caf, or in a hotel, numerous findings indicate that remote workers aggravate network security concerns because of a false sense of awareness. In fact, while two of every three teleworkers surveyed (66 percent) said they are cognizant of security concerns when working remotely, many admitted behavior that undermines and contradicts their awareness. Their reasons offer valuable insight for IT and security managers around the world, fueling a need for tighter, proactive relationships with end users. Below are four of several examples revealed in the study:

Sharing Corporate Devices With Non-employees

- More than one of every five remote workers surveyed (21 percent) allows friends, family members or other non-employees to use his or her work computer to access the Internet. In China, more than two of every five (42 percent) admitted to sharing their work computers. And in Japan, more end users share their work computers with others (13 percent) than those who use them for their own personal use (12 percent).

Top 5 Reasons: ìI donít see anything wrong with itî; ìMy company doesnít mind me doing soî; ìI donít think letting them use it increases security risksî; ìI doubt my company would careî; ìCo-workers do itî

Accessing Neighborsí Wireless Networks

- In China, Italy, and Brazil, almost one of every five teleworkers admitted to accessing a neighborís wireless network when working from home. Although the global average was 11 percent, Germany (15 percent) and the United States (12 percent) joined China, Italy, and Brazil in eclipsing the worldwide mark.

Top 5 Reasons: ìI needed it because I was in a bindî; ìI canít tell if Iím using my own or someone elseís wireless Internet connectionî; ìSetting up my own wireless network is difficult and confusingî; My neighbor doesnít know, so itís OKî; ìItís more convenient than using my wired connectionî

Opening Suspicious Emails and Attachments

- One of every four remote worker surveyed (25 percent) said he or she opens unknown emails when using work devices. In China, more than half of the respondents (57 percent) admitted they open emails from unknown sources.

Key Finding: In India, 20 percent of teleworkers said they open unknown emails and attachments, and in Brazil, 12 percent admitted doing so.

Personal Usage Findings

- One of the most glaring contradictions in the studyís results involved non-business activity: Only 29 percent of remote workers surveyed in the 10 countries admitted that they use their work computers for personal activities. However, 40 percent - 11 percent more - admitted that they use their work computers for online shopping. This discrepancy occurred in eight of the 10 countries (excluding China and India). For example, in the U.K., only 27 percent admitted using their work computer for personal reasons, but 53 percent said they shop online when working remotely.

Top 5 Global Reasons: ìMy company doesnít mind me doing soî; ìI would never get things done if I didnít do them while at workî; ìI doubt my company would careî; ìShopping online canít result in security problemsî; ìI think my work computer is more secure than my home computer.î

ìHijacking wireless networks or sharing corporate devices with non-employees is a significant risk for the global IT community,î said Jeff Platon, Ciscoís vice president of Security Solutions Marketing. ìTo highlight the U.S. example, the unsafe behavior of 11 remote workers in a company of 100 can bring down a network or compromise corporate information and personal identities. It only takes one security breach. For large enterprises with tens of thousands of workers, especially those with global workforces and differing business cultures, the potential risk is even more challenging.î

According to Platon, this is where the roles of IT organizations and chief security officers come into play. The challenges posed by remote workers present an opportunity for IT and security teams to become more proactive in protecting their businesses and reshape their role in the eyes of end users - a role that has historically been tactical and reactive.

ìIT must play a more strategic role, and to do that they need to develop stronger relationships with users to prevent threats from sabotaging efficiency and personal identities,î Platon said. ìThis study illustrates a golden opportunity for IT to elevate its role from a reactive, back-office function. IT has the opportunity to be progressive - to maintain a steady dialogue with users, to implement educational programs tailored to different business cultures and user groups, and to weave security best practices into corporate cultures. Driving this cultural change can help maximize the value - and safety - of teleworking, especially at a time when businesses are becoming extremely mobile.î