IT managers are allowing access to Web 2.0 but only nine per cent have the right security to protect them from all threat vectors.


A survey by Websense of 1,300 IT managers across ten countries found that 95 per cent of respondents currently allow employee access to some forms of Web 2.0 – most commonly webmail, mashups and wikis, and 62 per cent believe that it is necessary to their business.


However, 80 per cent of respondents claimed that they felt confident in their organisation's web security. This is despite 70 per cent not having real-time analysis of web content, 59 per cent not able to prevent URL re-directs, 53 per cent not having security solutions that stop spyware from sending information to bots and 52 per cent not having solutions to detect embedded malicious code on trusted websites.


Meanwhile 45 per cent do not have data loss prevention technology to prevent the company's confidential information from being uploaded to sites such as blogs and wikis, hosted on unauthorised cloud computing sites, or leaked through spyware and phishing attacks.


Despite this, 86 per cent of IT managers reported feeling pressured to allow more access to more types of Web 2.0 sites and technologies, with 30 per cent of respondents reporting pressure coming from C-level executives and director level staff.


Jim Haskin, chief information officer and senior vice president of marketing at Websense, said: “It's clear that some Web 2.0 technologies have already become indispensable for many businesses, and with the pressure from upper management and other lines of business, IT can no longer simply say ‘no' to Web 2.0 at work.”