Information workers in India are increasingly using their personal devices, applications, and web services to accomplish both personal and work-related activities. Results from Forrester’s Forrsights Workforce Employee Survey, Q4 2012 indicate that at least 85% of employees use phone/tablet applications and web-based services for both purposes which is putting corporate information security under serious threat.
My interactions with numerous infrastructure and operations (I&O) professionals from large enterprises in India over the past six months have revealed that there is a high degree of awareness of the need to develop a bring-your-own-technology (BYOT) policy. However, actual implementations aren’t yet common, as I&O professionals are unable to address management’s three key concerns. These are, in order of priority:
How can we ensure that information on employee-owned hardware and software is secure?
All of the fighting has resulted in multiple casualties. BlackBerry couldn't keep up the pace and was eventually chopped off at the knees. Microsoft has yet to gain enough developer volume to be a real threat and will eventually reinvent itself as a new company under new leadership. Third-party app stores are distributed and nimble but really amount to nothing more than splinter groups using guerrilla tactics against the major nation states. They just can't compete in the long term.
In the United States, Google Play and Apple iTunes have become the two superpowers in the mobile app war. With exceptional mobile application uptake, these two players have come to dominate the consumer mobile space. Phones don't sell phones. . .applications sell phones, and these two players have won.
Understanding the terms and technologies in the mobile security market can be a daunting and difficult task. The mobile ecosystem is changing at a very rapid pace, causing vendors to pivot their product direction to meet the needs of the enterprise. These changes in direction are creating a merging and twisting of technology descriptions being used by sales and marketing of the vendor offerings. What we considered “Mobile Device Management” yesterday has taken on shades of containerization and virtualization today.
Mobile antivirus used to be a standalone vision but has rapidly become a piece of the mobile endpoint security market. Where do we draw the lines, and how do we clearly define the market and products that the enterprise requires to secure their mobile environment?
In an attempt to help the enterprise S&R professional understand the overlapping descriptions of mobile security products, I am working on new research that will help organize and quantify the market. Understanding the detailed state of each of the technology offerings in the market, and their potential impact on a five- to 10-year horizon, will help enterprises make more-educated purchasing decisions.
To begin the process of covering all of the technologies being offered today, I’ve divided the solutions in the space by technology type. Not only am I analyzing technologies that are available now, but I’m also researching any additional products, services, and vendors in the mobile security space that have innovative new concepts that they are bringing to bear. These new-age offerings will help shape the future of mobile security, and we need to get ahead of the concepts now if we wish to have a better understanding of the impact of the innovation.
Across Asia Pacific (AP), expanding mobility support for employees, customers, and/or business partners will be the top strategic telecom priority for enterprises in 2013, surpassing other telecom priorities like performing network management and consolidating operations equipment, rationalizing/consolidating telecom/communications service providers, and moving communications applications to the cloud.
While enterprises will invest in a range of mobility products and services, there are five key areas in particular which will attract the most investment in 2013. Vendors need to focus on the solutions and engagement models that meet customers’ needs in these five areas and target the industries and countries where the demand will be greatest:
Business consulting services. Specifically for defining a formal enterprise mobility and/or BYOD program strategy, including devices, applications, data access, and provisioning. Moreover, AP organizations will likely need help in drafting compliance and legal policies related to enterprise mobility.
Telecom expense management solutions. This is one of the most critical telecom requirements for AP CIOs in 2013. Across the region, 50% to 60% of organizations pay the entire cost of voice and data services for company-supported Android and iOS phones and tablets. For BlackBerry phones, this proportion is nearly 70%.
Those of you paying attention in Sunday School may remember this thing called the apocalypse. Earl Robert Maze II was my Sunday School teacher, and he may be the most fearsome schoolmaster ever to scratch a chalkboard. One spitwad and there was sure to be a rapture. Mr. Maze would get pretty wrapped up in the lesson of the day and we'd all have to keep at least one eye on him as he paced back and forth. Not because we were worried about being asked a question, but because as he paced and talked, he'd build up globs of white something or other in the corners of his mouth, and every so often one of them would take flight and land on some unsuspecting front row pupil's hand, to their horror.
As luck would have it, I was late to class on the day Mr. Maze deemed that we were, at last, ready for the book of Revelation; I took the last seat -- In the front row -- Right in the line of fire. Sure enough, he was so worked up by the time he got to the part about the divine apocalypse, that one of those white gobs of goop chose that moment to set itself free and was headed for me like a heat-seeking missile. There was nothing I could do! And so to this day, the term apocalypse conjures up a frightening memory for me.
Which brings me to the current situation in the client management vendor landscape. The apocalypse was to be foretold by four horsemen representing conquest, war, famine and death (if you've ever worked for a company whose business has been disrupted, as I have, you've probably met with all four!). The four horsemen before us now in the client management market in the second quarter of 2012, are:
The explosion of tablets and smart phones.
The elusive management of client virtualization.
SaaS-based client management vendors (see Windows inTune).
New application delivery models (app stores, virtualized apps, etc).
I don’t blame you. And here’s why: The scope of mobile management is confusing and expansive, including things like mobile device management (MDM), persona separation technology, enterprise application stores, application management and a slew of other tools. Some vendors focus purely on one mobile management category, like device management, while plenty of others tackle two or three different enterprise challenges. At the same time, this market is evolving so fast that any assessment of the technologies and their vendors is out of date within 2-3 months.
But before I explain why Symantec’s acquisition is so important, let me give some more context. Mobile management has three main components which I&O professionals are thinking about, the device, the apps, and the data. Today, most first firms follow a very similar path: devices first – get an MDM solution to provide some control over the environment, set a mobile policy for employees, and start trying to figure out what to do about applications and data. Realistically, MDM only solves your challenge around device control – probably the least important of the three. That’s the path that many vendors are following today. As the MDM market becomes more commoditized, most vendors are turning their engineers towards data protection and sharing tools and application management technology. Had a conversation about Dropbox or Box.net lately? That’s a conversation about both apps and the data.
Supporting non-BlackBerry mobile devices is a priority for every company I speak with these days. Regardless of industry and size, firms are bringing in mobile device management (MDM) solutions alongside their BES to manage the increasing number of Android and iOS devices that are in their employees’ hands.
Now let’s be clear, even with these MDM solutions in place I&O professionals should not expect the same levels of security and management for Android and iOS that they’ve come to know on BlackBerry with a BES, yet. Ultimately these MDM solutions are limited by Apple and Google’s APIs, but eventually they will have all of the necessary components to challenge RIM’s position as the enterprise mobile device, especially as more companies allow personal devices inside their networks.
RIM is obviously putting a lot of work into combating the market share erosion it’s seeing in the hardware and platform space, but what about device management? With well over 25 vendors in the MDM space currently, the fight is on for who will manage mobile devices moving forward. Cue RIM’s announcement last week at BlackBerry World stating that it will expand BES and BES Express support to include both Android and iOS devices later this year, you can feel the other MDM vendors collectively shudder.