BYOD Brings Benefits, but Don't Ignore the Risks: ISF

By Michelle Maisto  |  Posted 2013-09-17

The Information Security Forum (ISF) is a 24-year-old nonprofit research organization whose Fortune 500–type member companies make clear the topics they're interested in and participate in research surveys. While historically reluctant to share its findings with nonmembers, ISF is beginning to loosen up. On Sept. 17, it made publically available a new report on managing the risks that come along with the benefits of the bring-your-own-device (BYOD) trend. "It's difficult to avoid mixing home and corporate data, and people will always look for ways to skirt controls," Steve Durbin, ISF's global vice president of information security, told eWEEK during a July meeting. "These devices were never designed to be truly secure, except for BlackBerry. The apps are easy to embed malware into, and they've become more attractive to attack now that they've moved into the enterprise space." How to support users while maintaining an organization's integrity? "The device is a red herring," said Durbin, touching on where the report goes. "Focus on the information itself and on how much really needs to be tightly controlled. ... If you start with what's most important and ensure how that's being accessed ... you're in a stronger position to make a business case," he advised.


Submit a Comment

Loading Comments...
Manage your Newsletters: Login   Register My Newsletters

Rocket Fuel