BYOD Best Practices – Three pitfalls you can’t afford to ignore

In a previous post1I raised three pitfalls that your BYOD program cannot afford to ignore when allowing employees to use their personal devices for work:

– Remote deletion of personal data on an employee-owned device
– Tracking an individual’s location
– Monitoring an employee’s Internet access

Based on my involvement with various BYOD projects2 and my ongoing conversations with many industry experts, here is my recommendation for three best practices that will allow you to strike the delicate balance between employee privacy and corporate liability :

Read more of this post

How Secure is Your Smartphone? Android, iOS, BlackBerry and Windows Phone Under Attack

Post based on my interview* with David Gilbert of IBTimes UK

As the adoption of smartphones grows rapidly, one of the biggest challenges facing the manufacturers, developers and, ultimately, users is not the threat of losing your phone, but the threat of someone stealing the personal data stored on your mobile phone.

Senior Director of Consumerization at Trend Micro, Cesare Garlati spoke to the IBTimes UK about this serious issue and made it clear that no matter what type of phone you own, you are in danger. “Every single platform is exposed to this, no platform is immune. Some are safer than others, but none are immune.”

Read more of this post

Consumerization Talks at the Mobile World Congress 2012

My interview with Nelson Pereyra of bnetTV.com at the Showstoppers event during the Mobile World Congress 2012 in Barcelona. BYOD, Consumerization and Mobile Security.

Nelson Pereyra:  Hello, I’m Nelson Pereyra from bnetTV. Welcome to Showstopper 2012 in Barcelona. And with us is Cesare Garlati, Senior Director of Mobile Security at Trend Micro. How are you doing, sir?

Cesare Garlati:  Very well, thank you for having me.

Read more of this post

Jailbreaking BYOD Control. Is Apple ready for enterprise primetime?

Mobile World Congress 2012

Mobile World Congress 2012

Consumerization is happening now, but many IT departments simply aren’t prepared to deal with the new challenges and complexities it entails. With IT managers increasingly urged by CEOs to stop saying ‘no’ and start supporting consumer tools, they need to reappraise their traditional approach. Put simply, IT needs flexible standards – they can’t say no but neither can they say yes to everyone.

Read more of this post

Mobile Security: iOS Jailbreaks Pose Risks

*** UPDATE 9/1/2015: KeyRaider Compromises 225K (jailbroken) Apple Logins ***

http://researchcenter.paloaltonetworks.com/2015/08/keyraider-ios-malware-steals-over-225000-apple-accounts-to-create-free-app-utopia/

 

Mobile Security: iOS Jailbreaks Pose RisksJailbreaking is happening in the millions: don’t turn a blind eye.



The latest jailbreak for iOS 6.1, released on 4 February, was downloaded by a whopping 5 million users in the first 48 hours alone, according to the website stats posted by Cyril (a.k.a. pod2g), the developer of the latest hack published on evasi0n.com. During these first two days, the websites served 40 million page views of which a good 50 per cent to 2.5 million unique visitors from the U.S.

Read more of this post

Mobility Management and Security. A Customer Panel. Part Two.

Learn from a panel of industry peers the solutions and the best practices that have turned consumer mobile technology into a competitive advantage for their companies.

This is Part Two of the post based on the panel that I moderated at the IDC mobileNext Forum 2011 in San Francisco. Click here for Part One.

Eric Erickson
VP Information Systems
Liberty First Credit Union

Bill Troyak
Team Leader End User Devices
Navistar

Jeff Jackson
Partner
Acumen Technologies

Going back to the three step approach to consumerization, the last step is to deploy new security and management tools to enable these new models. It’s not just about new platforms. Traditional System Management tools don’t really cut anymore. Id love to know more about your experience and your learning with regard to the necessary new infrastructure.

Eric:  Well, being a financial institution, it’s critical for us to make sure our data is secure.

Read more of this post

Mobility Management and Security. A Customer Panel.

Learn from a panel of industry peers the solutions and the best practices that have turned consumer mobile technology into a competitive advantage for their companies.

This post is based on the recording of the panel that I moderated at the IDC mobileNext Forum in December 2011 in San Francisco.

Eric Erickson
VP Information Systems
Liberty First Credit Union

Bill Troyak
Team Leader End User Devices
Navistar

Jeff Jackson
Partner
Acumen Technologies

I’d like to start by asking the panelists to briefly introduce themselves and the size and scope of their BYOD programs.

Eric: My name is Eric Erickson. I have been at Liberty First Credit Union for seven years as the VP of Information Systems and in the technology field for almost 25 years, 17 of those years with financial institutions. Our mission is to provide security for our members and provide our staff with the tools that they need to be able to work with the members to be able to get their accounts opened in a timely fashion or to get the documents that they need. We are looking to the mobile device to be able to move beyond our physical location so that we can go out to the community and work with the members where it’s convenient for them.

Read more of this post

Consumerization Talks – Sharing the Stewardship of Mobile Data

An interview with Philippe Winthrop

Managing Director
The Enterprise Mobility Foundation

 

 

 

According to Gartner, the consumerization of IT is the most significant trend affecting the IT Industry in the next ten years. As the Managing Director of The Enterprise Mobility Foundation, how would you describe the impact that this trend is having on the members of your organization?

Your IT department, like IT functions everywhere, is charged with managing corporate applications, preserving the security of your company’s lifeblood, and complying with government and industry regulations. Meanwhile, a torrent of mobile devices, neither issued nor owned by the organization, is pouring down on you. Don’t feel alone. The BYOD storm has been raging for two years, and you would be surprised how many companies are struggling to put a strategy in place to manage it. For example, an enormous bank—whose name and geography I can’t disclose—is still thinking about PIN functionality and email and calendaring, rather than application development and management. In this mobile conundrum, they and many other companies are only looking to their IT department for direction.

Read more of this post

Consumerization 101 – Employee Privacy Vs. Corporate Liability

Three pitfalls your BYOD program can’t afford to ignore.


Mary D. joined MD&M Inc. in 2009. Being an Apple enthusiast, she was quite excited to learn that the company offered an innovative BYOD program that allows employees to use their own iPhone for work. As part of the new hire package, Mary signed the acceptable use policy and was granted access to corporate email on the go.

Mary’s started having performance problems in her second year, and her manager put her on notice. After six months, Mary was terminated. When her manager clicked the ‘terminate’ button within the company’s HR system, a series of automated tasks were initiated, including the remote wipe of all information on Mary’s iPhone.

As it turned out, Mary had been performing poorly because her son John was dying of cancer. Just a few weeks before Mary was terminated, her husband took a picture of her and his son using Mary’s iPhone. It was the last photo Mary had of her son, and MD&M Inc. unknowingly destroyed it. Mary sued the company for damages.

Just how much is the last photo of a mother and son worth? Attorneys and expert witnesses sought to answer that question. They arrived at $5 million.

Read more of this post

MDM not the only avenue to BYOD security. But technology is simply not there yet.

My reply to Steven Song’s post on Cisco Security Blog

http://blogs.cisco.com/security/mdm-not-the-only-avenue-to-byod-security/

Yes. Mobile virtualization is the way to go. In an increasingly Consumerized IT world however, meeting end-user expectations in terms of convenience, cost and usability is even more important than addressing corporate IT professionals’ concerns about security and manageability. Despite a few remarkable attempts by VMware, Citrix and WISE, technology is simply not there yet.

Read more of this post