Device security driven by ‘executive whims’: Cisco

Powered by SC Magazine
 

As the consumerisation of IT continues to bring mobile devices onto the business network, Cisco calls for security pros to lead the race, rather than executives with a desire for an iPad.

IT security departments need to take the reins when it comes to employees using their consumer devices in the workplace, according to senior security experts at Cisco.

Tom Gillis, director of security at the company, said more security measures were being implemented retrospectively as company leaders brought in their own devices, such as iPads or Android phones, and insisted on using them before being given the security green light.

“A lot of customers have the official policy of ‘no, you cant do it’ and then some executive will say ‘guess what? I am.’," Gillis said.

"So, what we are seeing more and more is the policy of consumerisation is being driven a reaction to an executive whim or preference, not necessarily driven by the security team.”

Gillis believed this needed to change and security teams needed to step up to the plate.

“We think that the security team should lead the discussion and say ‘look this is going to happen at some point in our network, lets think now about how we are going to authenticate users,’” he added.

“Having a proactive stance... is really critical because if you are reacting to an executive decree then a lot of times you do not have the investment and resources necessary to go off and develop [a solution].”

Gillis claimed once personal devices had infiltrated the business and turned it into a “wild wild west,” it was pretty hard to step and project security onto employee’s products.

Consumerisation of IT was on all the security minds at Cisco, it seemed.

Gordon Thompson, director of security sales, said: “Security is top of mind for customers… and the demand from their employees around mobility [is an issue].

“This consumerisation and the power of the employee are driving [security teams] to look at how they examine security and do things in a different way.”

Paul King, senior security advisor at Cisco, added: “We can no longer be the ones saying no you can’t do this, we have to provide a secure way to do what [companies want to do].”

Business might not all be fully on-board with these beliefs as yet and could be holding off putting policies in place, but Thompson claimed all was not lost.

“The good news is most of our customers are waking up to the facts and beginning to set out strategies around that, especially a lot of the larger customers around Europe," he concluded.

This article originally appeared at itpro.co.uk

Copyright © ITPro, Dennis Publishing


Device security driven by ‘executive whims’: Cisco
Tags
 
 
 
Top Stories
ATO shaves $4m off IT contractor panel
Reform cuts admin burden, introduces KPIs.
 
Turnbull introduces data retention legislation
Still no definition of metadata to be stored.
 
Crime Commission prepares core systems overhaul
Will replace 30 year-old national criminal database.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  27%
 
Sourcing and strategy
  13%
 
IT infrastructure (servers, storage, networking)
  21%
 
End user computing (desktops, mobiles, apps)
  14%
 
Software development
  25%
TOTAL VOTES: 438

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  54%
 
No
  46%
TOTAL VOTES: 210

Vote