BYOD still creates security issues

Posted On 21 Aug 2013
Comment: Off

New research from Kaspersky Lab shows 60 per cent of SMBs have only a basic understanding of what company data is stored on employees’ own mobile devices. A recent study by TNS Infratest found that despite the overwhelming BYOD trend in business, only 35 per cent of IT managers admitted to having strict enough rules and policies in place to provide an accurate overview of company information contained on personal devices. As more employees use their own devices for business purposes, a lack of knowledge on the security implications of BYOD is presenting serious risks. With 525,000 mobile phones reported stolen in 2011/2012 as part of the Crime Survey for England and Wales, businesses can face company data falling into the wrong hands if not effectively managed. In the absence of a clear overview of what company data was on any lost or stolen device, it becomes difficult for IT managers to manage the potential repercussions. ‘You only need to look at the statistics showing the number of devices lost or stolen each year to see why it is so important for SMBs to have an accurate overview of what company information employees have on personal devices,’ states David Emm, senior security researcher, Kaspersky Lab. ‘Only when clear BYOD rules are in place can adequate steps be taken to build a robust security solution should a device be lost or stolen. To best protect data a policy should include file encryption, blocking access to the corporate network and, in the best case, wiping all data on the device.’ Encryption of data on devices is one of the most effective measures, but modern solutions also offer remote data wipe functions and GPS localisation of lost devices.

About the Author
Brian Sims BA (Hons) Hon FSyI, Editor, Risk UK (Pro-Activ Publications) Beginning his career in professional journalism at The Builder Group in March 1992, Brian was appointed Editor of Security Management Today in November 2000 having spent eight years in engineering journalism across two titles: Building Services Journal and Light & Lighting. In 2005, Brian received the BSIA Chairman’s Award for Promoting The Security Industry and, a year later, the Skills for Security Special Award for an Outstanding Contribution to the Security Business Sector. In 2008, Brian was The Security Institute’s nomination for the Association of Security Consultants’ highly prestigious Imbert Prize and, in 2013, was a nominated finalist for the Institute's George van Schalkwyk Award. An Honorary Fellow of The Security Institute, Brian serves as a Judge for the BSIA’s Security Personnel of the Year Awards and the Securitas Good Customer Award. Between 2008 and 2014, Brian pioneered the use of digital media across the security sector, including webinars and Audio Shows. Brian’s actively involved in 50-plus security groups on LinkedIn and hosts the popular Risk UK Twitter site. Brian is a frequent speaker on the conference circuit. He has organised and chaired conference programmes for both IFSEC International and ASIS International and has been published in the national media. Brian was appointed Editor of Risk UK at Pro-Activ Publications in July 2014 and as Editor of The Paper (Pro-Activ Publications' dedicated business newspaper for security professionals) in September 2015. Brian was appointed Editor of Risk Xtra at Pro-Activ Publications in May 2018.