Not enough companies are making security a high priority. And all too often even businesses that are focused on the threat still lack clear policies.

Many companies are failing to identify exactly where money needs to be spent, resulting in large parts of the corporate IT infrastructure being left under-protected.

Lack of effective procedures and policies is becoming more of an issue with the growing use of wireless networks and PDAs, and services such as GPRS and instant messaging.

Government or company laptops are being lost, with sensitive data often finding its way into the public domain.

People often move corporate data around, perhaps sending it home for out-of-hours work or forwarding it to a friend because there was something funny in it.

All done without malice, but in ways that expose an organisation to potential security and legal risk.

Better education for users would help eradicate these threats. Staff must be aware of their responsibilities regarding company and customer data, and policies must be enforced and adhered to.

As with most areas of IT, the real solution is not in technology alone: it is in people and best practice. In this Special Report, we look at how you can better protect your organisation and its data.