PricewaterhouseCoopers (PwC) claims that, in many cases, business and technology professionals within the same organisation are opposing one another's security function.
The business analyst is calling on them to work together, including IT professionals explaining the risks and solutions to managers in non-jargon terms where necessary.
In its Information Security Breaches Survey 2010, PwC found more than a quarter of all firms - both big and small - do not encrypt their wireless communications.
Richard Sykes, governance risk and compliance leader for PwC, says: "Business leaders ignore information security risk at their peril.
"Historically, business leaders and boards have tended to regard information security as a technology issue."
But he adds that this cannot be allowed to continue, following years of security being reported back through traditional channels from the technology team.
