Internal security within local area networks (Lans) is the Achilles heel for the majority of UK organisations, according to a new study.

Secure switching firm ConSentry Networks found that employees with unrestricted access to all Lan assets posed the number one problem for chief technology officers.

This was followed closely by controlling contractors, protecting against malware and documenting user activity.

Together, these issues represent almost 70 per cent of near-term investment plans to improve internal security.

ConSentry surveyed 200 chief technology officers in April to explore attitudes towards security threats and priorities for future investment.

"This focus is not surprising given that nearly half of respondents had either very basic or no network access restrictions in place," the firm said.

"Meanwhile, almost half admitted to having little or no Lan auditing capability, leaving themselves with no formal records should litigation take place.

"They also have no way of verifying what suspect users, such as those announcing they are leaving a company, have done on the Lan with regard to accessing inappropriate material."

The survey highlights the degree to which security concerns have evolved inside the Lan. ConSentry argues that controlling not just who can come onto the Lan but what they can do once they're on it, is crucial to protecting business assets.