He suggested that companies have employees acknowledge that they understand that their communications are monitored when they log in to corporate systems.
"This shows the enterprise is upfront, and has the added benefit of reducing frivolous use of corporate equipment and bandwidth," he said.
Companies can also choose to not inspect traffic going to particular destinations, such as personal finance sites, said Bricata's Pirc.
"People aren't going to be comfortable for their personal banking stuff to be inspected," he said. "You might have a white list, not to decrypt for Facebook, Twitter, or anything personal."
Sign up for CIO Asia eNewsletters.