Firms have been warned there is now a growing threat over the use of social media by employees at the work place and the scale of cyber crime increases.
The rising popularity of social media, the nature of the interactions it can lead to and the risks posed to organisations by inappropriate employee activities should not be ignored by companies, according to consultant Towers Watson.
It warned that while there are benefits for firms in the use of social media as a marketing tool, the blurring of boundaries between workplace and marketplace; professional and private life; and on and off-line activity, means the simple banning of access to social media at work or tolerating but not guiding social media usage – does not work and can be counterproductive for employers.
Andy Blacknell, senior consultant at Towers Watson, said: "When thinking about the potential of social media, employers are often put off by the perceptions of lost productivity, leakage and potential liability risks. Given social media usage is likely to increase and most individuals using it are also employees, employers need to ask themselves if it is really less harmful to leave employees to their own devices or rather to provide them with appropriate social media capability and guidance.
“We believe the solution is to have social media policies embedded in each organisation."
The firm’s research shows that more than half of companies block social media sites due to concerns about employees disclosing private or sensitive financial or competitive information or about employees spending too much time on social sites.
It also found that a vast majority of companies (73%) have not purchased insurance against any form of cyber risk, including social media liability. Of the 27% that have acquired some form of policy, 61% bought £6 million to £30 million limits.
Tim Jaggs, senior consultant at Towers Watson, said: "Blocking access to social sites may have reduced risk in the past, but in future is likely to increase it while also limiting the benefits active social media engagement can produce. With more and more people using social media, employers need to exploit social media opportunities, so it is essential they educate employees about both the risk and the potential.
“Each organisation has to decide its social media policy according to its circumstances but, if for no other reason than to establish some defensibility in the event of a liability claim, every employer should have a formal social media policy, supported by insurance for social media activities."
Mr Jaggs added: "Companies have to continue to find better ways to manage and mitigate all kinds of cyber risks. In the social media space, the lack of a formal policy increases the risk of uncontrollable activity, therefore to support risk management, employers should have a contingency plan, which includes insurance, in their social media policies in case things go wrong. Blocking access is the cyber equivalent of sticking your head in the sand."