Device security driven by ‘executive whims’: Cisco

Powered by SC Magazine

As the consumerisation of IT continues to bring mobile devices onto the business network, Cisco calls for security pros to lead the race, rather than executives with a desire for an iPad.

IT security departments need to take the reins when it comes to employees using their consumer devices in the workplace, according to senior security experts at Cisco.

Tom Gillis, director of security at the company, said more security measures were being implemented retrospectively as company leaders brought in their own devices, such as iPads or Android phones, and insisted on using them before being given the security green light.

“A lot of customers have the official policy of ‘no, you cant do it’ and then some executive will say ‘guess what? I am.’," Gillis said.

"So, what we are seeing more and more is the policy of consumerisation is being driven a reaction to an executive whim or preference, not necessarily driven by the security team.”

Gillis believed this needed to change and security teams needed to step up to the plate.

“We think that the security team should lead the discussion and say ‘look this is going to happen at some point in our network, lets think now about how we are going to authenticate users,’” he added.

“Having a proactive stance... is really critical because if you are reacting to an executive decree then a lot of times you do not have the investment and resources necessary to go off and develop [a solution].”

Gillis claimed once personal devices had infiltrated the business and turned it into a “wild wild west,” it was pretty hard to step and project security onto employee’s products.

Consumerisation of IT was on all the security minds at Cisco, it seemed.

Gordon Thompson, director of security sales, said: “Security is top of mind for customers… and the demand from their employees around mobility [is an issue].

“This consumerisation and the power of the employee are driving [security teams] to look at how they examine security and do things in a different way.”

Paul King, senior security advisor at Cisco, added: “We can no longer be the ones saying no you can’t do this, we have to provide a secure way to do what [companies want to do].”

Business might not all be fully on-board with these beliefs as yet and could be holding off putting policies in place, but Thompson claimed all was not lost.

“The good news is most of our customers are waking up to the facts and beginning to set out strategies around that, especially a lot of the larger customers around Europe," he concluded.

This article originally appeared at

Copyright © ITPro, Dennis Publishing

Device security driven by ‘executive whims’: Cisco
Top Stories
NSW Govt gets ready to throw out the floppy disks
[Opinion] Dominic Perrottet says its time for government to catch up.
iiNet facing new copyright battle with Hollywood
Fighting to protect customer details.
The CISO’s dilemma: Do you trust your partner’s partner?
[Blog post] How far down the chain do you check?
Sign up to receive iTnews email bulletins
Latest Comments
In which area is your IT shop hiring the most staff?

   |   View results
IT security and risk
Sourcing and strategy
IT infrastructure (servers, storage, networking)
End user computing (desktops, mobiles, apps)
Software development

Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results