What is a major concern regarding a de-perimeterized model for employee-owned devices?

A major concern regarding a de-perimeterized model for employee-owned devices relates to the lack of consistent patching and the potential for malware incidents. In a de-perimeterized environment, the traditional boundaries of the network are less defined, allowing employees to access corporate resources from their personal devices. This can lead to vulnerabilities, as personal devices may not be subjected to the same rigorous security measures as company-owned equipment. For instance, employees may not keep their devices updated with the latest security patches or may inadvertently download malware, putting corporate data and the broader network at risk.

A de-perimeterized model often assumes that end-users will maintain the security of their own devices, but this may not happen consistently, leading to a higher likelihood of security breaches. Hence, the risk of malware incidents increases significantly in this scenario, making this a crucial consideration in the security risk management of using personal devices for work.