Alloy said security vulnerabilities will increase as social networking is incorporated into business processes. Hackers can create targeted phising attacks or gain direct access to the network by using corporate and personal information inadvertently posted online by staff.

"If they take everything, I've still got a mattress and a Smith and Wesson," Alloy said of the ability of hackers to steal identities.

IBM global technology systems senior managing consultant Andrew Gontarczyk said enterprise should primarily focus security efforts on policy enforcement and good business culture.

"Risk management and compliance are the biggest drivers for security. Businesses must consider who they employ and why, and build security around it," Gontarczyk said.

"Its a balance of tightening access rights and doing things like appropriate background checks, while still allowing the business to function smoothly.

"You can tick all the boxes in the compliance checklists and still be open and exposed, because the checklists always [lag] behind the threats - the point is holistic security."

Gontarczyk said weak corporate policies are the biggest cause of data leakage from accidental data losses and employees tempted to steal information.

He said encryption and solid access management should be the second security priority for business because it can prevent disgruntled employees from stealing data, minimize the effect of information lost on removable drives, and help locate the cause of the security breach.

Allor said enterprises are typically 80 percent secure because the remainder is difficult and expensive to protect and requires constant modification due to changing business requirements.

Click to send your opinion to Darren Pauli.