Information security is not only about policing an organization's perimeter defenses and monitoring traffic coming into the organization's systems from outside. Information security also is about keeping an eye on material leaving the network.

Failure to implement strong content security systems and policies, to prevent inappropriate email and Internet use by employees, and to stop contaminated material from circulating within a network could lead to operational damage, financial loss and public embarrassment.

Forensic investigations performed by Ceptera have uncovered a wide range of illicit activity made possible by weak content security controls at the desktop and within internal networks. At the less harmful end, this has involved staff viewing or downloading pornographic content from the Internet. More serious incidents have involved employees sharing data with competitors, leaking confidential material to the press, and using company equipment to support piracy.