Lack of BYOD knowledge could cause problems for companies

Lack of BYOD knowledge could cause problems for companies

An ignorance of bring your own device (BYOD) strategies among workers across the UK could be putting the corporate data of companies across the UK at risk, new research has suggested.

A study by Intercede, entitled The Rise of the Identity Centric Economy, surveyed 1,213 UK employees working in a wide range of industries.

It found nearly a quarter (23 per cent) were not aware of their employer's BYOD policy, while another seven per cent of workers accessed data without permission.

Overall, some 21 per cent of respondents knew they needed permission to access information but still did not ask for it, while another 40 per cent even believed they needed no prior consent.

According to the firm, as many as 40 per cent of workers currently use a company or personal mobile device in order to access secure corporate data with nearly one in five (19 per cent) admitting to stay signed in at all times.

As many as 21 per cent of those that decided to put a password on their mobile device said they did not like logging in due to them being too long or complicated to remember.

Another 12 per cent cited the same reasons for ditching the whole idea of using a mobile device at all for work purposes.

However, perhaps most worryingly, eight per cent of workers had used methods outside of their company's technology team in order to bypass the need to give permission to access emails.

Richard Parris, chief executive officer of Intercede, said: “By bypassing companies’ BYOD policies and not taking regulations into account when accessing sensitive data, employees are leaving the back door open to hackers. CIOs are currently in a difficult position. They either ban BYOD completely or implement long, complex passwords, which are vulnerable and unfit for use on mobile devices.

“The best approach is to turn the mobile device from a vulnerability into a secure authentication device which acts as the first line of defence to protect corporate data being accessed on it. "