Governance & Risk Management, Remote Workforce, Video
How to defend BYOD devices without installing software or creating friction
Michael Novinson (ENG)Michael Novinson) •
November 21, 2022
The longstanding disconnect between mobile app detection and identity and access management has fueled cyber incidents and breaches as remote work has expanded.
Workers using personal smartphones don’t want to install corporate endpoint management products, but still need to ensure the user and device are protected while performing business functions, says RSA CEO Rohit Ghai. To solve these common vulnerabilities, employers need technology that can protect personal mobile devices without involving the company’s security operations team or disrupting the user experience, says Ghai (see: RSA CEO Rohit Ghai: ‘Disruption catalyzes transformation’).
“If this is not a socially managed device, you don’t have as much assurance as to whether the device is jailbroken, whether it’s compromised or whether it’s owned by the actual user you’re trying to authenticate,” Ghai says. “That lack of assurance creates vulnerabilities in terms of authentication, as this compromised device could potentially be used to access sensitive data within the corporation.”
In this video interview with the Information Security Media Group, Ghai discusses:
- What has changed about the detection of threats on mobile devices;
- Drivers and options for passwordless authentication;
- Most requested services for RSA authentication products.
Prior to RSA’s September 2020 acquisition by Symphony Technology Group, Ghai served as president of RSA during its tenure as a Dell Technologies business. He previously served as president of the Dell EMC Enterprise Content Division, where he revitalized the portfolio for the digital era through strategic partnerships and acquisitions. Ghai was responsible for all aspects of the ECD business, including sales and services, channel strategy, product development, marketing, finance, support and customer success. He joined Dell EMC in December 2009 to run product development and was Chief Operating Officer of ECD before becoming President. Ghai joined Dell EMC from Symantec, where he held a variety of senior engineering and general management roles. Previously, he worked at Computer Associates in a number of senior management roles in the BrightStor and eTrust business units, and he led CA’s India operations as chief technology officer. Ghai joined CA through the acquisition of Cheyenne Software, a startup in the backup and data protection space.