Thursday, September 27, 2012
A question that I often hear is, "What do you say to corporate people worried about security risks of social media within a company?" It's one of my favorite questions, because it really exposes the way we look at risk, which is all-too-human and, simultaneously, dumb.
I like to tell people that social media does not involve a risk. It's not a risk that someone will do something dumb someday. Actually, it is a certainty. If you allow employees to use social media, someone at some time will do something mind-numbingly idiotic.
It might be, as the questioner asks, a security breach. Someone decides that a trade secret would be just the thing to spice up their next tweet. Or it might be something else--making fun of your client, or sexually harassing someone, or telling a politically incorrect joke.
And, in fact, all of these things have been done on social media, and more. The problem, however, isn't social media. It's us. If we don't have the self-control to avoid that kind of behavior, then it will come out in social media or any other place that we operate.
The reason we see social media, or anything new, as risky is as fundamental as human nature. Studies tell us that we always are more comfortable with the status quo than with change, which has probably served mankind well throughout our history.
But risk doesn't disappear just because we are comfortable and accustomed to something. Think about financial risk. Many people were once comfortable with bank savings accounts because their money was growing, but they were running a huge risk that inflation would eat alive their purchasing power. Unfortunately, the risk of changing the investment loomed larger than the risk of staying the course, which seemed safe.
Social media, and just about anything new, is the same. You always have to balance the risk of doing it against the risk of not doing it.