A simple answer would be "because if you don't, it will cost you in so many ways".
The threat from cyber-crime and other online security breaches has not reduced in the last 10 years, by the contrary it has increased in complexity and "intelligence".
No Complete Security Solution offers 100% immunity to these threats. That is why it is important that both Business and Home Users do their best to reduce the risk of becoming victim to these breaches by using comprehensive protection packages and regular servicing by an IT Professional.
Using Security Suites for individual Workstations or Personal Use Computers will obviously reduce significantly the number of infiltrations and damage to your system and data. Despite that all Users can recall many circumstances when they have been exposed to risks out of the protection range of their security software. There is a limit to what automated security can do. The human supervision will always be required at some point.
Information Security Report for 2010
The most common and important security breaches are due to user mistakes or deliberate actions.
When a user loses a laptop, for instance (unless an IT Security specialist secured the data) everything on it becomes as good as publicly available and in even worse cases - when the user doesn't backup properly - it could also mean data loss.
Very many (and by this we mean companies too) live with the very wrong impression that creating a password for a user profile it also means that the data is safe.
If the data is very sensitive and it's loss or "becoming public" affects someone or breaches a Data Protection Law (UK- Data Protection Act) those responsible will normally end being hit both by lawsuits from the affected individuals/businesses and Authorities which regulate Data Protection. ICO Penalties 2010(UK).
To some it might appear that things are getting unreasonably tougher, but the truth is actually that all these are simply a reaction to businesses/companies/organisations continuing to ignore how serious this issue is. How would you feel if your Clients Database, credit cards details or some other sensitive bit of information is either lost or gets in the wrong hands?
In lame terms we'd say that security breaches are of two types: passive and active.
Passive would be those where employees end up involuntarily contributing to it, and active would be when someone deliberately attacks the business infrastructure for the clear purpose of gaining unauthorised access to the data with a "read or destroy" intention.
To make this appear even more complicated, security risks come from so many directions. With the very much needed use of networks (intranet or internet) and wireless devices, Email services, removable media, portable computers (laptops, tablet computers, multi-function mobile phones) you are open to even more security risks.
If an IT Security Professional is not looking into this aspect for you already, you are exposed.
Should you want to analyse how your business stands from this point of view contact us.