Although 68 percent of organizations across industries have some form of a "bring your own device" policy, just 39 percent have a mobile data management system in place, according to a survey from InformationWeek.
Many organizations' BYOD policies have lax security:
- 45 percent let any device onto the network without enforcing user compliance with policies in place.
- 53 percent of organizations just require a password longer than four characters, 7 percent have no password requirements.
- 42 percent of organizations skip malware scanning.
- 13 percent do not enforce encryption requirements on mobile devices that access enterprise data.
The result of lax policies has been security incidents at a significant number of organizations. In the past year:
- 11 percent have experienced a data breach requiring public disclosure.
- 45 percent have had a mobile device containing enterprise data be reported missing.
Survey responses were collected from 421 organizations, 32 percent of which are subject to HIPAA.
More Articles on BYOD:
Beth Israel Deaconess CIO Dr. John Halamka on Learning From Mistakes
How Cedars-Sinai Made the iPhone Its Enterprise Mobility Device
University of Iowa Health Care Transitioning From Pagers to iPhones