That’s not to say that new technology shouldn’t be embraced, but on the flipside, there needs to be a legitimate business justification before it should be allowed on the corporate network. For me, Facebook and the like simply don’t provide that justification. I can’t see any additional value that a simple email account or corporate website doesn’t already offer. Especially given the potential for security vulnerabilities. If my users can’t access their twitter accounts, oh well, they will get over it. If, however, data or intellectual property is compromised, it’s my neck, not the user who clicked on the bad link. Perhaps it’s because of the blending of personal and professional use. If I have a corporate email account, I’m going to behave in a professional manner and with the proper mindset. Whereas with a personal social networking account, I may be less on guard, play with the little apps and toys that are made available (which is where the security nightmare begins).

You, yourself even state that a highly experienced and skilled security professional can’t even guarantee that his faceboook account is secure. What chance then do normal, corporate users have of being secure? Does that sound like a technology that is so necessary as to jeopardize an entire business?