Companies still not doing enough to manage BYOD risks

Companies still not doing enough to manage BYOD risks

Although the use of a bring-your-device (BYOD) strategy has undoubtedly brought about a number of benefits for various businesses across a wide range of sectors, there have also been many reports of the possible risks for firms that do not take the necessary precautions when using such an approach.

Yet it seems that many organisations are continuing to ignore such warnings, with TEKsystems recently claiming that some 72 per cent of IT professionals believe that employees accessing information from a personal device could place sensitive company data at risk.

One root cause of the problem appears to be a lack of education about the issue, with nearly two-thirds of professionals (64 per cent) claiming their firm either has no official policy for BYOD or there is a lack of proper communication about the issue.

That number is worryingly a 21 per cent increase on that recorded during the same survey in 2013.

With data security becoming an increasingly pressing issue for many firms, there is seemingly a real danger that the benefits of using BYOD could be overtaken by the risks, purely due to slack attitudes to securing information.

Nearly two-thirds (60 per cent) of respondents to the TEKsystems survey said BYOD had given them a greater level of control over their work life, meaning such an approach arguably presents a real opportunity for employers to enhance the experiences of their workforce.

Yet many firms risk never being able to reap these rewards, due to being held back by not implementing an adequate BYOD policy.

Jason Hayman, TEKsystems market research manager, said: "The growing deficiency of BYOD policy and management uncovered in this snapshot is astonishing, especially given the heightened threats of cybercrime and mobile security attacks.

"These findings suggest that companies have either become completely overwhelmed by the process of instituting and upholding BYOD controls, don’t feel that there is a legitimate threat, or have made the dangerous assumption that their tech-savvy workforce doesn’t need direction regarding safe use of personal devices."