Study reveals growing awareness of security among mobile employees

A study commissioned by Cisco and the National Cyber Security Alliance reveals behavioral findings among mobile wireless workers which highlight the human side of security as businesses and IT organizations empower more and more employees to remain connected outside of their offices. Conducted this spring by InsightExpress, an independent market research firm, the study explores what is at stake for businesses trying to become mor mobile in the hope of becoming more agile and efficient. It reveals findings gleaned from more than 700 mobile employees in seven countries that have adopted wireless technologies: The United States, United Kingdom, Germany, China, India, South Korea, and Singapore. The findings are especially relevant as adoption of wireless and mobility technologies increases. For example, IDC reports that by 2009 the number of mobile workers in the United States is expected to reach more than 70 percent of the country’s total workforce. Korn/Ferry International reports that 81 percent of executives globally are constantly connected via mobile devices.

Almost three of every four (73 percent) mobile users claimed that they are not always cognizant of security threats and best practices when working on the go. Although many said they are aware “sometimes,” 28 percent of them admitted that they “hardly ever” consider security risks and proper behavior. Some of these mobile users even admitted that they “never” consider safe best practices and didn’t know they needed to be aware of security risks. When asked why they were lax in their security behavior, many mobile users offered reasons like, “I’m in a hurry”, “I’m busy and need to get work done,” “Security just is not top-of-mind for me,” and “It’s IT’s job, not mine”.

Mobile employees admitted to engaging in a variety of risky behavior. A couple examples include:

* Accessing unauthorized wireless connections. Whether it’s hijacking a neighbor’s wireless connection or jumping onto unauthorized connections in public places, one-third of mobile users engage in this behavior. China (54 percent) featured the most extreme cases. This behavior was also prevalent in Germany (46 percent) and South Korea (44 percent).

Top Reasons: “I can’t tell whose connection I’m using” ; “Mine isn’t working”; “They don’t know so it’s OK”; “I don’t want to pay for my own connection”.

* Opening emails and attachments from unknown or suspicious sources. Almost half (44 percent) of all mobile users surveyed said they open emails and/or attachments from unknown or suspicious sources. In China, India, and the United Kingdom, more than half of mobile end users admitted to this behavior. A significant number (76 percent) said it is more difficult to identify suspicious emails and files on PDAs and smartphones than on laptops because the screens are much smaller.

“What’s key is knowing that the issues outlined in this study can be prevented,” said Jeff Platon, Cisco’s vice president of security solutions. “Technology is important in solving security issues for wireless mobile users, but education and communication are proactive measures IT can take to ensure corporate security and generate greater ROI on their investments. IT should be a strategic asset to the business