Corporate Security: Protecting Productivity highlights companies' need to properly train employees from the outset of their employment, as well as provide ongoing training as companies implement new technology and procedures. 

The report recommends critical steps that every company should follow:

• Clearly assign authority and responsibility to the Chief Security Officer.
• Identify the corporate goals that good security policies must protect.
• Set minimum standards that apply in all situations for all personnel.
• Provide introductory and follow-up training to all employees.
• Measure the corporate security effectiveness in terms of compliance and avoided costs.

For example, one profiled company maintains a list of potential security threats on which it trains its employees. By pulling critical action items from this list and from the company's own experiences, the team can identify its most important next steps.

"While security crises tend to focus everyone's attention, the preparation for the next crisis comes in the 'calm' period when it is sometimes difficult to hold people's attention," said Jason Richardson, Cutting Edge Information's CEO. "The security team must push continuously for sound policy and training
to enforce that policy."

The report features security practices from 48 companies across 14 industries and includes the strategies and tactics that security-focused companies use to protect themselves as well as the benefits they receive from increased security.

A recent KPMG study supports this report. The study found that 70 percent of security breaches are caused by employee actions.