Research / 2013 US Mobile Enterprise Risk Survey Summary Report
Explore and understand attitudes toward data security, privacy and responsibility as it relates to employer-owned mobile devices. The survey polled workers in companies with 1000 or more employees who use mobile phones for work within diverse industries, including banking, retail, healthcare, and energy. The poll focused on the state of bring-your-own-device (BYOD) policies within these organizations and the current sentiment of workers regarding responsibility and compliance for corporate data contained on mobile devices.
Key US Findings of the 2013 Mobile Enterprise Risk Survey
It’s not my problem - When asked about appropriate penalties if they leak or lose company data, a quarter (25.2%) of American enterprise workers surveyed said there should be no punishment since data security is not their responsibility.
It’s not a big deal - While 75% of respondents felt that they should face some penalty if they lost corporate data, many of those who had lost a device with work data on it said their punishment ranged from ‘nothing’ (34%) to simply having to replace the device (30%) or getting a ‘talking to’, but nothing else (21%).
I didn’t know - About one-quarter (23%) of respondents indicated that they do not know their company’s procedure for dealing with work device loss or theft. Also, 10% of respondents indicated that their employer is not looking to introduce a procedure for the loss or theft of work devices.
It can’t happen to me again - More than one-third (35%) of respondents who had lost their mobile phones stated that they did not change their security habits afterwards.
It’s just a phone - Nearly two-thirds (59%) of enterprise mobile users estimated their corporate data to be worth less than $500.
As the use of mobile devices continues to increase in the enterprise, these survey results indicate IT is still facing many challenges implementing and enforcing mobile-use guidelines. Although employees may feel the data on their device is only worth $500, when you consider that most data breach penalties can range into the millions of dollars, there’s an obvious disconnect between an employee’s perception and the risk to the organization.
From November 15 to 29, 2013, an online survey was conducted among 750 US adults age 18+ who have a cell phone for work purposes, and work for a company with 1000 employees or more. Any discrepancy in or between totals is due to rounding.
Note: that bases of less than 100 are used with caution, and bases of less than 30 are not reported on.