Device security driven by ‘executive whims’: Cisco

Powered by SC Magazine
 

As the consumerisation of IT continues to bring mobile devices onto the business network, Cisco calls for security pros to lead the race, rather than executives with a desire for an iPad.

IT security departments need to take the reins when it comes to employees using their consumer devices in the workplace, according to senior security experts at Cisco.

Tom Gillis, director of security at the company, said more security measures were being implemented retrospectively as company leaders brought in their own devices, such as iPads or Android phones, and insisted on using them before being given the security green light.

“A lot of customers have the official policy of ‘no, you cant do it’ and then some executive will say ‘guess what? I am.’," Gillis said.

"So, what we are seeing more and more is the policy of consumerisation is being driven a reaction to an executive whim or preference, not necessarily driven by the security team.”

Gillis believed this needed to change and security teams needed to step up to the plate.

“We think that the security team should lead the discussion and say ‘look this is going to happen at some point in our network, lets think now about how we are going to authenticate users,’” he added.

“Having a proactive stance... is really critical because if you are reacting to an executive decree then a lot of times you do not have the investment and resources necessary to go off and develop [a solution].”

Gillis claimed once personal devices had infiltrated the business and turned it into a “wild wild west,” it was pretty hard to step and project security onto employee’s products.

Consumerisation of IT was on all the security minds at Cisco, it seemed.

Gordon Thompson, director of security sales, said: “Security is top of mind for customers… and the demand from their employees around mobility [is an issue].

“This consumerisation and the power of the employee are driving [security teams] to look at how they examine security and do things in a different way.”

Paul King, senior security advisor at Cisco, added: “We can no longer be the ones saying no you can’t do this, we have to provide a secure way to do what [companies want to do].”

Business might not all be fully on-board with these beliefs as yet and could be holding off putting policies in place, but Thompson claimed all was not lost.

“The good news is most of our customers are waking up to the facts and beginning to set out strategies around that, especially a lot of the larger customers around Europe," he concluded.

This article originally appeared at itpro.co.uk

Copyright © ITPro, Dennis Publishing


Device security driven by ‘executive whims’: Cisco
Tags
 
 
 
Top Stories
Making a case for collaboration
[Blog post] Tap into your company’s people power.
 
Five zero-cost ways to improve MySQL performance
How to easily boost MySQL throughput by up to 5x.
 
Tracking the year of CIO churn
[Blog post] Who shone through in 12 months of disruption?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Which is the most prevalent cyber attack method your organisation faces?




   |   View results
Phishing and social engineering
  68%
 
Advanced persistent threats
  4%
 
Unpatched or unsupported software vulnerabilities
  11%
 
Denial of service attacks
  6%
 
Insider threats
  12%
TOTAL VOTES: 1052

Vote