Danger lurks in the workplace

As more employees become mobile workers and use multiple devices to access company assets, the potential for data loss grows

Written by Ankita Rai

December 19, 2011 03:10 IST

Ten years ago, employees were assigned laptops and told not to lose them. They were given logins to the company network, and told not to tell anyone their password. End of security training.

Today, the young employees that businesses hire primarily because of the fresh ideas and energy they can bring to companies, show up to their first day on the job toting their own phones, tablets, and laptops, and expect to integrate them into their work life. They also expect others?namely, IT staff and chief information officers?to figure out how they can use their treasured devices, anywhere and anytime they want to, without putting the enterprise at risk. Security, they believe, is not really their responsibility.

With the onslaught of mobile devices and social networks, the boundaries between work and home have become nearly nonexistent, raising security concerns among enterprises. Harsh reality is, the future of business is defined by those who are prepared for what?s next. Moving beyond means implementing an IT environment that can handle the unexpected?particularly cybercriminals? increasing investment in exploits to steal valuable corporate information.

The cost of just one data breach can be staggering for an enterprise. Ponemon Institute estimates range anywhere from $1 million to $58 million. The cost is not just financial, either: Damage to corporate reputation and loss of customers and market share are potential side effects of a high-profile data loss incident. Unsurprisingly, many enterprises are questioning the impact of technology innovation and flexible work habits on corporate information security?and sometimes, take the drastic step of banning devices or restricting access to Web services.

Alarm bells are ringing in corporate circles as seven out of 10 young employees frequently ignore IT policies, and one in four is a victim of identity theft before the age of 30, according to a global study from US network equipment maker Cisco. The report reveals startling attitudes toward IT policies and growing security threats posed by the next generation of employees entering the workforce?a demographic that grew up with the internet and has an increasingly on-demand lifestyle that mixes personal and business activity in the workplace.

The desire for on-demand access to information is so ingrained in the incoming generation of employees that many young professionals take extreme measures to access the internet, even if it compromises their company or their own security. Such behaviour includes secretly using neighbours? wireless connections, sitting in front of businesses to access free Wi-Fi networks, and borrowing other people?s devices without supervision, the study highlights.

The Cisco study presents a dismal security scenario in India. About 31% of employees surveyed in India have lost their mobile device in the last 12 months ?score one of the highest amongst all nations surveyed. Besides India, the survey covered Australia, Brazil, Canada, China, France, Russia, UK, USA, among others. Students in India are not too far behind; about 29% lost at least one of their mobiles devices?tablet, smartphone or laptop in the same period. Shockingly, about 79% of employees surveyed in India flout the company?s IT policy all the time?score highest in all regions surveyed.

One in 10 employees globally said IT policies prohibit the use of iPads and tablets, signaling a growing challenge for IT teams as tablet popularity increases. Three of 10 employees said social networking sites like Facebook, Twitter, and YouTube were prohibited as well. More than half of the employees surveyed globally said they have allowed others to use their computers without supervision ?family, friends, coworkers, and even people they do not know.

Rebecca Jacoby, CIO, Cisco says, ?As workforces become increasingly mobile, security and risk management concerns inevitably grow. The findings indicate the real need for better corporate policies, end-user education, and stronger, trusted relationships between employees and IT departments.?

VC Gopalratnam, CIO of Cisco India says, ?Employees joining the work force today belong to the ?digital generation? and are used to being ?connected? at all times. They expect their employers to give them unfettered access to the internet and also the freedom to use their own devices, for both personal and official purposes. Organisations often grapple with the need to cater to employee expectations and at the same time ensure that sensitive company information is not compromised.?

Thanks to the array of technology innovations flooding into the workplace ?everything from tablets to social networking to videoconferencing systems such as telepresence?employees can work almost anywhere and anytime they need to, provided the right technology is there to support connectivity and even more importantly, provide security. Quite clearly, the way forward for businesses is balancing the needs of the next generation of workers along with a balanced, flexible approach to security.

Get Live Share Market updates, Stock Market Quotes, and the latest India News and business news on Financial Express. Download the Financial Express App for the latest finance news. .

This article was first uploaded on December nineteen, twenty eleven, at ten minutes past three in the night.