Sounds pretty dry & boring -- that's what I thought anyway -- but then I started skimming the PDF report the blog talks about. In a nutshell Microsoft provides self assessment tools for biz, in this case to see how ready they are for the cloud. Of course this isn't a randomized poll, & there's no telling what companies used the tool, thereby providing Microsoft with the data they've published in the report.
But overall I consider it pretty scarey! The data overwhelmingly portrays companies that aren't spending resources where they should to establish & maintain IT security & integrity. It's bad enough when it's their data at risk [as long as they're not your employer, risking the company's health], but in at least some of these cases it's your data as well.
"The data consists of answers provided by people who used the CSRT over a six-month period between October 2012 and March 2013. Approximately 5700 anonymous responses to the CSRT’s 27 questions were received from around the world."
"It is perhaps encouraging that malware protection is relatively mature on average, but less so when you consider that almost 45% of respondents indicated they are getting started or making progress. "
"The answers that reflected the least advanced maturity levels overall—and therefore the areas in which organizations could most benefit from the cloud—were in the following areas:#11. (CCM HR-02). Human Resources Security. Employment Agreements
#21. (CCM OP-03). Operations Management. Capacity / Resource Planning
#19. (CCM IS-23). Information Security. Incident Reporting
#5. (CCM LG-01). Legal. Nondisclosure Agreements
#9. (CCM OP-04). Operations Management. Equipment Maintenance"