Develop, communicate and monitor information management policies

Employers need clear information management policies that state expectations around the type of data that will be protected and how it should flow within the organization and to clients. Introduce checks and balances to ensure staff compliance, but in a way that also helps maintain that vital focus on innovation and collaboration.

To find this middle ground, you must know your organization’s culture well and understand that employees need flexibility to do their jobs. In some cases, I’ve seen companies create substructures that let staff surf the Internet at work, but still restrict access to certain websites over content or malware concerns. In others, businesses with bring-your-own-device (BYOD) policies have taken the added step of vetting a range of smartphones or tablets and allowing employees to choose models that best suit their personal and professional needs, but they are technically approved from a software security perspective. Technology can provide the framework we work within, but policies that govern its use must be a constant reminder to staff, including a method of regular monitoring.

Data sharing and mobility will only increase as the boundary between workers’ professional and personal lives continues to blur.

Companies must implement important safeguards that will maintain security and confidentiality, with the understanding and need to mitigate any negative impact it will have on business processes. Policies related to corporate information governance must drive behaviour that ensures workflows in the technology environment will flourish.

Organizations that find ways to confront this challenge – and seize the accompanying opportunities – will enjoy success. Those that don’t will be left behind.