Wednesday, March 1, 2017

Cybersecurity and labor conciliation

The report of the week

France has started the year 2017 with a clear objective: to end the calls of the heads outside the working hours. To make this possible the goverment has approved the right to disconnect and 'ignore' emails that arrive on your days off or once you put your foot out of the office. With this new standard France wants to get less stress on the workers, leave their problems in the office and not take them home. This law, however, has contradictory tints with what has been a trend for years: BYOD (Bring Your Own Device) to have the mails and the corporate network always available on both your pc and your personal smartphone.

French laws may be one-day theme, but professional trends in digital transformation have come to stay. And on this subject, among others, talks the new study that Check Point has interviewed 1900 IT experts from large companies of more than 1000 employees in the United States. The results have been published in its annual 2017 Cyber Security Survey which reveals that only 35% of respondents have "total or high confidence" in their organization's overall security. In addition, the issues that most concern the experts are those related with the cloud and mobile devices.

Precisely that fear of security in mobile devices is given by the BYOD that we discussed before and this is demonstrated in the report, which makes a special mention of the advantages and disadvantages that can involve to the organizations. On the one hand is an increasingly widespread trend in which companies allow workers to carry their personal devices to carry out work tasks and connect to the network and corporate resources. It also aims to centralize all business information on a single mobile device to not have to carry two mobile or access the corporate network from home. However, at first sight it may seem like all advantages, but this can lead to obvious security breaches, since the device becomes unreliable because there is less capacity to control it on the part of the company. In fact, for 60% of the interviewees the main fear is that users download unsafe applications or that, simply, the mobile phone falls into the hands of the friends of others.

Respondents are clear how to deal with those mobile devices over which they lose control. 68% said that malware protection is the most important thing in a good cybersecurity solution for mobile devices, followed by reporting and monitoring. The report also highlights the necessity of more visibility into the problems of mobile handsets is needed to ensure greater security.

This fear that companies experience facing mobile vulnerability is not unfounded. It is a reality and Avast has expressed it so taking advantage of the Mobile World Congress. The company has conducted a study of the smart devices in Spain and has found that more than 5.3 million smart devices are vulnerable to being hacked. One of the most important breaches is the one produced by the Telnet network protocol, the same one that was used to create the Mirai botnet that attacked Dyn in 2016, causing the collapse of sites such as Twitter, Amazon, Reddit, etc.

The security problems of mobile devices are something that must go beyond the market trend of work. In fact, BYOD and the new French law are not contradictory, because the objective of the law is to favor conciliation and BYOD is perfect for teleworking, an issue that workers value very positively. In one way or another, the fundamental role of organizations is to ensure the confort of their employees but without forgetting the security of their devices.


Post a Comment