While few risk management teams would fail to recognize the growing potential for information security threats involved in mobile devices, the fact remains that a lack of integrated mobile security is continuing to cost companies in terms of everything from lost productivity to lost data.
Cyber criminals also continue to target mobile workers as easy potential access portals to a company’s backend IT infrastructure.
As a result, many organizational security risk management teams can argue that their company might need to supplement its integrated mobile defense program with a coherent yet simple BYOD (bring your own device) policy and management strategy.
If you are a member of such a team, perhaps, you should add a recent commissioned survey report entitled “SURVEY: Mobile Threats are Real and Costly” by a company called Webroot to your team’s reading resource library. This report conducted and organized data from research to assess the state of mobile security in organizations throughout the U.S., U.K. and Australia.
The study – which focused on companies that provide smartphones and tablets or allow employees to use their personal mobile devices – found that mobile security is a high priority for almost half of the responding companies and that mobile threats increased help desk support requirements and consumption of valuable and costly IT resources.
Some key findings from the report are:
- 83% of respondents believe that mobile devices create a high security risk within the corporate environment.
- 60% required additional IT resources to manage mobile security, resulting in higher costs.
- More than half reported that mobile threats reduced employee productivity and disrupted business activities.
- Only 40% of BYOD companies with fewer than 100 employees have mobile security.
- 73% of responding companies have a mix of company and employee-owned smartphones and tablets.
- While users of employee-owned mobile devices might not want corporate IT to manage their data, they expect and need company IT resources to protect it.
- Companies with no mobile security policies or procedures are almost twice as likely to pay regulatory fines.
- On average, mobile device management for companies is about 57 hours per month.
If some of this information sounds like it would be helpful to your information and risk management team presentations to management, then click here to read the full report.