BYOD security: Singaporean SME staff left to their own devices
By Digital News Asia October 9, 2013
- 47% of IT decision-makers in SMEs place security and safety of mobile devices solely in hands of their staff
- ‘Singapore SMEs need to take more hands-on approach in managing their employees’ mobile devices’
THE increasing BYOD (bring your own device) trend amongst small and medium enterprises (SMEs) in Singapore is causing a headache for IT administrators, with nearly half leaving the security and safety of mobile devices in the hands of the staff themselves.
IT admins feel they are ill-prepared to deal with growing security issues associated with the BYOD trend, according to the results of a survey released on Oct by IT management software provider SolarWinds.
The survey was conducted from Sept 8-13 across a variety of industries, resulting in 150 survey responses from IT decision makers from public- and private-sector SMEs in Singapore, SolarWinds said in a statement.
Sixty-five of the respondents were from SMEs with under 50 staff, and 85 from SMEs with over 50 staff.
In Singapore, an SME is defined as having an annual sales turnover of not more than S$100 million (US$80 million) or not more than 200 staff. This represents 99.3% of all businesses in Singapore, SolarWinds noted.
- Almost half of those polled (47%) place the security and safety of mobile devices solely in the hands of their staff, with only 16% providing staff with some assistance in securing their device, such as installing antivirus or anti-spam programs.
- Despite the fact that over 70% of respondents agreed that mobile devices pose the biggest risk to network security, and almost the same amount (67%) admitted to heightened concerns because their employees used their own devices rather than company-supplied devices for work, only half of all those surveyed said that they had developed an IT security plan for their business.
- The most common issue faced by those charged with managing and securing employees’ personal mobile devices within their network was the inability to rapidly identify, quarantine and mitigate threats, with 35% citing this as a problem.
Other BYOD issues included the visibility (or lack thereof) of corporate devices on the network, viral attachments, and even uncooperative employees, with 27% highlighting this as a roadblock to mobile security.
“Given that more than a third of all SMEs surveyed (35%) have all of their staff using their own mobile devices for work, the lack of assistance provided to staff to secure those devices poses a significant risk for organisations of this size,” said Sanjay Castelino, vice president and market leader at SolarWinds.
“In fact, around 10% of the respondents reported that their employees’ mobile devices have already threatened the security of their organisation,” he added.
Surprisingly, this figure was skewed upwards by larger organisations that would be expected to have more defined security policies and procedures in place than their smaller counterparts, with 15% of those in businesses of 50 or more staff reporting a previous threat to security, but just 3% from those with less than 50 staff.
Additionally, almost a third of those who had implemented a mobile security solution (31%) only did so in response to a threat, rather than to mitigate against potential threats, SolarWinds said.
The most common user behaviours on mobile devices which threaten the security of the Singapore SMEs surveyed include:
- Loss of handsets;
- Unsecured sharing of company files/ data;
- Use of unsecured WiFi;
- Creating passwords which are too easy to crack; and
- Not using a VPN and visiting phishing or malware sites
“These issues have been largely experienced in the enterprise or larger business end of town, but today’s results show that Singaporean SMEs are just as exposed,” said Castelino.
“The survey results demonstrate a real disparity between the recognition of the potential problems posed by BYOD and the level of activity around addressing those issues.
“Singapore SMEs need to take a more hands-on approach in managing their employees’ mobile devices which access their corporate network,” he added.
Related Stories:
80% of BYOD use goes unmanaged, says Ovum
Malaysians are all for BYOD, but their IT depts aren't: Survey
BYOD: Kill off those old IT policies, CIOs
For more technology news and the latest updates, follow @dnewsasia on Twitter or Like us on Facebook.