Mobile devices are the mighty double-edged swords of today's workplace. On the one hand, they provide greater integration of information; on the other, they can introduce serious security risk. This article summarizes an interview with Anthony Kinney, Microsoft's Verizon Partner Manager, about mobile security and ways to mitigate data risk in a BYOD environment.
Main security risk areas
- Data loss prevention — securing data on a device in case it is lost or stolen.
- Data in transit — protecting communications between the device and backend systems, usually by encryption.
- Data leakage — keeping a user's work and personal information separate to prevent accidental or intentional sharing beyond corporate control.
Kinney emphasized a multilayered approach to security. Measures such as secure-boot technology, remote wipe capabilities, automatic cloud storage, and network encryption reduce the chance that a pocket office becomes a one-way ticket to a breach.
What makes the greatest difference, however, are the actions a company takes. Kinney pointed out that employees jailbreaking or rooting devices is a major risk for BYOD programs because it weakens platform safeguards. Many companies respond by using third-party services that containerize corporate data so it never resides unprotected on the local device.
Kinney also described how some platforms protect data at the data-center or file level before it reaches the device, allowing document-specific edit/view/share controls so files cannot be “saved as” or forwarded contrary to policy. That file-level enforcement helps IT provide security even when a user accesses the document from a personal device.
Beyond technical controls, companies should consider their broader risk management. For organizations concerned about the financial and liability exposure from lost or leaked data, Data Breach (Cyber Liability) Insurance can help manage costs and response obligations.
Combining device integration, policy enforcement, and regular assessments is the practical path forward. Formal reviews and validations can reveal gaps before they become incidents, and pairing technology with insurance and audits strengthens overall protection; for example, companies often add Security Audit Insurance or similar services as part of their risk program.
If you're evaluating a BYOD policy and want help aligning coverage with technical controls, talk to an agent.
Frequently Asked Questions
How can a company prevent data loss if an employee loses a device?
Use device encryption, enforce strong passwords, enable remote wipe, and ensure critical files are stored in managed cloud services rather than only on the device.
What is containerization and why is it useful?
Containerization isolates corporate apps and data from personal apps on the device, so work files remain under IT control and are easier to secure or remove if needed.
Does encryption protect data in transit on mobile devices?
Yes—using TLS/VPN and other transport-layer encryption helps ensure communications between mobile apps and backend systems remain confidential and tamper-resistant.
When should a business consider cyber insurance for mobile risks?
Consider cyber or data breach insurance when mobile access introduces potential exposure to customer or employee data, when regulatory notification costs are a concern, or when internal resources for incident response are limited.