Study Finds 41 Percent of Surveyed Feds Are Putting Agencies at Risk With Existing Secure Mobility Habits

Report reveals gap between policies and government secure mobility behavior
Author:
Publish date:
Social count:
0
Image placeholder title

ALEXANDRIA, Va.--Mobile Work Exchange, a public-private partnership focused on demonstrating the value of mobility and telework, today announced the results of a new study, “The 2014 Mobilometer Tracker: Mobility, Security, and the Pressure In Between,” which highlights the most critical findings of the Secure Mobilometer, a self-assessment tool to better understand mobile security pressure points and vulnerabilities. Commissioned by Cisco, the report reveals that 41 percent of the government employees who used the assessment tool are putting themselves and their agencies at risk with existing mobile device habits.

The report notes that 90 percent of government employee respondents use at least one mobile device – laptop, smartphone, and/or tablet – for work purposes. Many government respondents are taking basic steps to secure agency data. Eighty-six percent lock their computer when away from their desk; additionally, 86 percent have a safe and alternative workplace compatible for work, and 78 percent always store files in a secure location.

Despite these secure actions, government employees are not showing the same caution for mobile devices. They are practicing potentially dangerous behaviors, including the use of public Wi-Fi (31 percent), a lack of multifactor authentication or data encryption (52 percent), and failure to use passwords on mobile devices for work (25 percent). Even when employees do use a password, nearly one in three admits to using an "easy" password and six percent of those admit to having it written down.

When the appropriate security policies and procedures are in place and enforced, a mobile workforce can be a tremendous asset to a government agency. However, 57 percent of respondents who took the assessment from an agency/enterprise-wide perspective are failing to secure agency data, with gaps in mobile policies and security systems.

Despite the Federal Digital Government Strategy, more than one in four government employees have not received mobile security training from their agencies. Additionally, just 50 percent of respondents noted that their agencies have formal, employee-focused mobile device programs. Half of the agencies that took the assessment are missing fundamental mobile security steps, like utilizing a remote wipe function, or adding multifactor authentication or data encryption on mobile devices.

“In the near future, the number of mobile devices will exceed the world's population, and by 2017, we expect more than 10 billion connected mobile devices,” said Larry Payne, Cisco vice president, U.S. Federal. “With the proliferation of devices, security continues to be a major concern. The 2014 Mobilometer Tracker study shows that six percent of government employees who use a mobile device for work say they have lost or misplaced their phone. In the average Federal agency, that's more than 3,500 chances for a security breach. Organizations need to take the necessary steps to protect their data and minimize the risk of data loss.”

Despite shortfalls, government respondents scored considerably safer on the Secure Mobilometer than their private-sector counterparts.

Related