CIOs to Focus on Improved Security Measures: IDC

by CXOtoday Staff    Jun 29, 2012

With the exponential growth of mobile devices in the enterprise, it is essential for CIOs to adopt adequate security measures to prevent against threats, according to a recent IDC Financial Insights report.

Towards this end, IDC stated that enterprises should review their mobile security policies because of the complexities that are occurring within the mobile market. According to the report besides devices like tablets and smartphones gaining prevalence in the enterprise, trends such as bring-your-own-devices (BYODs), coupled with mobile banking, payments and wealth management are gaining precedence. These instruments will become a more prominent vector of attack for cybercriminals who are seeking to harvest corporate and financial data.

IDC had estimated by 2012, the Asia Pacific region will command 47 percent of the share of global smartphone that is equivalent to 541 million units. Likewise, security issues in these devices will continue to increase. As a result, CIOs should be more robust in their security planning.

“With the rise of smartphones, malicious mobile software such as viruses, worms, Trojan horses, spyware and other rouge applications will increase drastically. And this will in return amplify demand for mobile security solutions in Asia Pacific,” commented Li-May Chew, CFA, Associate Director for IDC Financial Insights Asia/Pacific Financial Advisory Service.

To improve security measures, IDC recommended that enterprises should deploy mobile-device management (MDM) tools that are robust security applications to remotely secure, monitor, encrypt and manage data. CIOs should also consider deploying mobile-application management (MAM) tools to secure and control corporate data and applications on an app-by-app basis.

Chew added that it does not end with installing stringent mobile security features alone. “As cliché as it may sound, we - device owners and end-users - are typically the weakest link when it comes to information security. It is thus up to enterprises to increase employee awareness of these threats and introduce programs to inculcate secure practices in the work environment,” he explained.

He noted that although majority of organisations that allow BYODs have developed policies to support this trend, most employees are not aware of their company’s mobile security policies. With an increased number of enterprises allowing employees to use non-standard unmanaged devices for work to access sensitive corporate information, the need of the hour is to create awareness and educate staff about mobile security policies that every organisation should have in place.