The majority of IT security administrators in the UK claimed workers had little understanding of data protection policies, according to a new report.
Over half of respondents to a Check Point and Ponemon Institute poll doubted the knowledge of employees in their companies when it came to corporate security policy.
Most respondents said managing policies by user, rather than ruling with an all-encompassing approach, was vital to improving security.
Of the 450 IT security administrators surveyed, 52 per cent said identity awareness efforts by organisations would help with such a strategy.
"Employees can play a big role in being a first line of defence, helping their company enforce stronger security measures and promoting more user awareness within the organisation," said Dr Larry Ponemon, chairman and founder of the Ponemon Institute.
"Companies are constantly facing new and costly security risks from both internal and external sources that can jeopardise the business."
The recent hijacking of a Vodafone website, where a blogger handed their password to a group campaigning against the communications giant, again highlighted the dangers of the insider threat.
Complexity
Another major issue amongst respondents was complexity, with 35 per cent naming it the most challenging issue they faced.
UK firms used security solutions from five or more different vendors, according to Check Point.
"To improve security in this day and age, organisations need to get a better understanding of their current environments and prioritise their short and long term initiatives," added Nick Lowe, head of Western Europe sales at Check Point.
