2016 might be the year of a “back to basics” set of governance regarding front-level security. There are over 30 security counter measures that enterprises can leverage at the access device level. Windows 10 offers a new set of security tenders in the portfolio as well. For years, governance has not necessarily kept pace with the access devices that enterprises are deploying in the organizations. In 2016 we will likely see a revert back to examining the access devices and the strategies that IT can locally implement to improve security on the devices.
Some of the blocking and tackling (hey, it is the football playoffs right now!) could include revisiting Active Directory Privileges, enhancing asset management, and recalibrating device level security.
Many organizations are genuinely surprised when the software rationalization reporting is processed to find that the devices are not really as locked down as they thought. End users can still download software from the internet and often provide a basis to load non-corporate software on the devices. In most of the studies competed by this author, the line items “quantity 1” still represents 50% (or more) of the content on a PC. These packages are often not fully vetted by IT. Budgets have migrated to the business units in many cases as cited by IDC™ and others.
Asset management needs to always be at the advanced practice levels. With increased percentages of mobility devices, this is easier said than done, but it is necessary to protect IP, privacy and over access/security. Lastly, at the device level governance and the capabilities on the devices are critical today. Increased security does not mean a lot, if the organization cannot determine who has what device and what might be on that device.
Given all of the dynamics, the playbook for access device security is in a back to the future phase. Proactive Access Management may well be the new mantra for 2016.
This blog post is provided by HP Inc.
Bruce Michelson is the National Lifecycle Manager and a Chief Technologist for Hewlett-Packard’s Print and Personal Systems Group (PPS).
In this role, Bruce is responsible for engaging with Hewlett-Packard’s largest and most complex accounts in developing continuous process improvement plans and cost savings strategies. As a subject matter expert in lifecycle and the total cost of ownership, Bruce’s credentials include industry recognition for his independent research including user segmentation, Appropriate Incumbent Behavior, and future trends.
Bruce has been appointed and recognized as a Distinguished Technologist by Hewlett-Packard. Distinguished Technologist is a title reserved for an elite few individuals who have met a rigorous standard within three performance criteria- impact and continuity of technical contributions, leadership, and breadth and depth of knowledge. Bruce holds multiple certifications.
