Welcome!

Open Web Authors: Sarah Lake, Shelly Palmer, Tad Anderson, An Bui, Mat Rider

Related Topics: Wireless, SOA & WOA, Web 2.0, Open Web, Cloud Expo, Security

Wireless: Article

When Mobile Device Management Isn’t Good Enough

Mobile data residency and privacy for bring your own device

Employees using mobile devices to access popular and often times essential cloud applications continue to increase in the workplace, both via private devices and those owned by the enterprise. This increase in use brings with it important data security issues for the enterprise. Some enterprises find themselves scrambling to implement mobile device management (MDM) technologies to address the data security concerns that go along with employees using mobile devices in everyday business. The end goal of these MDM solutions is to allow for the enterprise to securely capitalize on the benefits of mobile devices while not stifling the widely accepted bring your own device (BYOD) policy.

BYOD is clearly here to stay in the workplace, as the evidence of the efficiencies, convenience and cost-effectiveness experienced by both employees and the enterprise is undisputable. Utilizing BYOD devices offer the advantages of simplicity and asset control, but enterprises remain concerned about data being compromised as employees use their own devices over public networks to access sensitive information on enterprise networks. The issue of data residency also arises when employees travel from country to country and try to access regulated information that is not permitted to cross geographical borders. Employees may also need to use a personal device that contain offline storage and connecting to sensitive data such as protected health information (PHI) brings the possibility of putting that data in a less secure environment than the enterprise requires.

Just last week though, in a release about mobility trends, Gartner predicted that 20% of MDM technologies will be so strict that BYOD will fail. Where does this leave IT and security professionals responsible for balancing the security of the enterprise and mobility needs of employees?

Using Tokenization or Encryption with MDM
Encryption and tokenization are two data security methods that can protect sensitive information being processed and stored in cloud applications. While both methods can be used to safeguard sensitive information in public networks, the Internet and in mobile devices, tokenization has some specific benefits for enterprises primarily concerned with data sovereignty. Both techniques can be deployed within Cloud Data Control Gateways to provide employees with access to enterprise cloud apps while giving the enterprise ultimate control over where data can flow and be stored. Combining these technologies with a thoughtful, yet not draconian, MDM approach can lead to BYOD policies that will get the job done and prove successful. These powerful and interoperable solutions are being used by leading organizations to ensure compliance with sector specific requirements such as HIPAA, PCI DSS, GLBA and CJIS.

Read the original blog entry...


PerspecSys Inc. is a leading provider of cloud protection and cloud encryption solutions that enable mission-critical cloud applications to be adopted throughout the enterprise. Cloud security companies like PerspecSys remove the technical, legal and financial risks of placing sensitive company data in the cloud. PerspecSys accomplishes this for many large, heavily regulated companies across the world by never allowing sensitive data to leave a customer's network, while maintaining the functionality of cloud applications. For more information please visit www.perspecsys.com or follow on Twitter @perspecsys.

More Stories By Gerry Grealish

Gerry Grealish is Vice President, Marketing & Products, at PerspecSys. He is responsible for defining and executing PerspecSys’ marketing vision and driving revenue growth through strategic market expansion and new product development. Previously, he ran Product Marketing for the TNS Payments Division, helping create the marketing and product strategy for its cloud-based payment gateway and tokenization/encryption security solutions. He has held senior marketing and leadership roles for venture-backed startups as well as F500 companies, and his industry experience includes enterprise analytical software, payment processing and security services, and marketing and credit risk decisioning platforms.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.