I would say that the CTO is probably a bigger liability from an HR perspective than the potential security problems of leaving computers unlocked.