sb-nz logo
Story image

Businesses failing to secure BYOD - Bitglass

03 May 2019

Organisations are enabling bring your own device (BYOD) without putting proper security tools, training, and best practices in place, research has found.

According to Bitglass’ survey, most businesses are embracing BYOD in the workplace – 74% of respondents said that employees at their companies are allowed to use personal devices to perform their work.

However, nearly half of respondents (47%) either said that their employer did not have a clear BYOD security policy, or that they did not know if such a policy was in place at all.

Respondents considered unmanaged devices (31%) to be the top blind spot for data leakage; additionally, mobile devices (which are typically unmanaged) were the third largest blind spot at 18%.

Despite this, less than a fifth of respondents (16%) cited unmanaged devices as a top security priority for their organisations this year.

“Embracing BYOD can yield benefits like increased productivity, cost savings, and talent retention,” says Bitglass Regional Director Steve Armstrong.

“However, allowing employees to perform their work from personal devices can lead to data leakage if proper BYOD policies and security solutions are not put in place.”

“In order to securely reap the benefits of BYOD, organisations need advanced tools such as user and entity behaviour analytics (UEBA) and data loss prevention (DLP).

“Additionally, they must be able to selectively wipe corporate data from personal devices without affecting the personal data therein,” he adds.

“However, for deployments to be successful, these capabilities need to be implemented through an agentless solution that won’t hinder user privacy or device functionality.”  

Key Findings:

  • Respondents stated that their organisations’ top overall security priorities for the year were malware protection (26%), unmanaged device access (16%), consolidating security solutions (16%), controlling external sharing (14%), improved analytics (11%), and unmanaged applications (9%).
     
  • When asked for the tools that they saw as the least effective for securing personal devices, respondents identified password-protected documents as the frontrunner (36%), and face recognition (20%) as the second least effective.
     
  • For multifactor authentication on BYO devices, 37% of organisations use third-party applications, 13% use SMS tokens, 11% use hardware tokens, and 11% use Google Authenticator; 28% of respondents stated that their organisations do not use MFA on personal endpoints.
Story image
Exabeam and Code42 partner up to launch insider threat solution
The solution will give customers a fuller picture of their environment, and will leverage automated incident response to obstruct insider threat before data loss occurs.More
Story image
Is cyber deception the latest SOC 'game changer'?
Cyber deception reduces data breach costs by more than 51% and Security Operations Centre (SOC) inefficiencies by 32%, according to a new research report by Attivo Networks and Kevin Fiscus of Deceptive Defense.More
Story image
High-tech heist: why fending off ransomware attacks is more challenging than ever in 2020
The COVID-19 crisis has unleashed a wave of sophisticated and disruptive ransomware attacks, and the onus is on businesses to ramp up their security measures if they’re to avoid falling victim, writes Attivo Networks regional director for A/NZ Jim Cook.More
Story image
Proofpoint and CyberArk extend partnership to further safeguard high-risk users
“Our CyberArk partnership extension provides security teams with increased detection and enhanced adaptive controls to help prevent today’s most severe threats."More
Story image
Shlayer malware proves Apple devices aren't as secure as you think
"Apple never talks about malware publicly, and loves to give the impression that its systems are secure. Unfortunately, the opposite has been proven to be the case with great regularity."More
Story image
ESET launches the latest version of its Mobile Security solution
“With this latest version of ESET Mobile Security, we want to ensure our users feel completely secure when performing financial transactions on their devices, in addition to being protected from malware and phishing attempts."More