While all that may be true however, social media may also provide the gateway for viruses and malware, productivity distraction, and employees may end up discussing sensitive or proprietary information without appropriate authorization. Furthermore, the competition and debt collectors also now use these sources to check up on companies' employees.

How many public web-facing web sites does your company use or host? What about your interfaces to the cloud? Have any of these sites been checked via a serious penetration test or for OWASP coding compliance? Generally accepted better practices state we should be doing quarterly OWASP scans and biannual penetration testing. How robust is your change management process? Also, have you considered -- Quis custodiet ipsos custodes? It is Latin for, "who will guard the guards." Will it be internal auditing and logging for privileged access accounts? Mitigation of such potential vulnerabilities requires implementing technologies such as SIEM, DLP, HIPS, (among others) in concert within enterprise level threat and risk management strategy.

According to this benchmark study sample, cyber attacks can become even more costly if not resolved quickly. The report shows that the average number of days to resolve a cyber attack was 14 days with an average cost to the organization of $17,696 per day! How would that kind of dollar loss impact your company's bottom line?