Security Issues Pose Hurdles for BYOD Migration: Gartner
Privacy and access controls should be implemented to ensure the security of corporate data as well as protect personal information stored on user-owned devices.The consumerization of IT and the increasing popularity of bring-your-own-device initiatives is changing the way businesses work, but there are several security issues organizations need to keep in mind when implementing a BYOD program, according to a study by IT research firm Gartner. Seventy percent of respondents in a recent survey by the firm said that they have or are planning to have BYOD policies within the next 12 months to allow employees to use personal mobile devices to connect to enterprise applications. A third of all organizations surveyed said they currently have BYOD policies in place for mobile devices, such as smartphones and tablets. Gartner identified three main security issues organizations should be aware of when implementing a BYOD program, including employee access to unsecure sites that could introduce malware into the company network, data leakage and privacy concerns. “Shifting from an enterprise-owned mobile device fleet to having employees bringing their own devices has a major impact on the way of thinking and acting about mobile security,” Gartner principal research analyst Dionisio Zumerle said. “Policies and tools initially put in place to deal with mobile devices offering consumer-grade security must be revised to deal with these devices being under the ultimate control of a private user, rather than the organization.”
When enterprise data is allowed on employee-owned devices, the risk of leakage increases for the enterprise, not just because of the rise of mobile malware, but also because legitimate but unsupported apps may inadvertently create security risks for the organization and, most importantly, because of device loss, the report warned.