Companies fail to manage BYOD

News by Tony Morbin

Only 27 per cent of organisations surveyed globally have well-defined network BYOD policies in place according to new research from Dimension Data.

Of 1,622 IT professionals surveyed in organisations with more than 250 employees in 22 countries across the Americas, Asia Pacific, Europe, the Middle East and Africa, the results concluded:

35 per cent of UK organisations do not have a mobility roadmap (31 per cent globally)

Only 30 per cent of UK organisations have completed a security assessment of key applications touched by mobile devices (32 per cent globally)

 Only 18 per cent of UK organiations surveyed agreed that their organisation has well- defined policies around mobility (27 per cent globally)

40 per cent of UK users are unable to access critical business applications to perform their job function using personal mobile devices (61 per cent globally)

90 per cent  of survey participants said that they do not have the necessary capability to stop employees using their personal mobile devices to access enterprise systems on their own - even if they wanted to.

Matthew Gyde, Dimension Data's Group General Manager for Security Solutions, noted how the lack of visibility into what's sitting on the corporate network raises major data security risks for organisations.  

“Unknowns significantly increase the opportunity for intrusion, so when organisations are aware of the mobile devices on their networks, as well as the applications that can be accessed via these devices, they'll be able to not only identify rogue devices, but also track new applications coming into their enterprise,” explains Gyde who points out that another key benefit of knowing what mobile devices are on the corporate network is the ability to monitor user adoption of mobile enterprise applications.

Earlier this month the The Information Commissioner's Office (ICO) issued a warning to companies to provide clear BOYD guidelines after the Royal Veterinary College breach the UK Data Protection Act when a member of staff lost their camera, which included a memory card containing the passport images of six job applicants: the organisation had no guidance concerning how personal information stored for work should be looked after on personal devices.

Nicholas Banks, EMEA Head of Sales Imation commented, “The ICO rightly draws attention to the need for clarity on both what we mean by BYOD and how policies are implemented. It's clear that individual staff members, departments can have very different opinions on the topic of BYOD, and this is where uncertainty and risk can arise. 

“Mishaps and breaches are showing us time and time again that rather than simply thinking about whether or not employees should be able to use personal equipment, we need to consider how best to give people access to the tools and services they need to be productive. Taking a productivity-led approach means we're better able to ensure that measures like encryption and data management policies are in place to secure corporate data on both corporate and personal devices. Monitoring, management and audit tracking capabilities are also vital so that we can show when, where and how data is accessed, downloaded and stored on devices.”

Find this article useful?

Get more great articles like this in your inbox every lunchtime

Video and interviews