These services do work, as long as the local police are responsive to finding and retrieving the device. Is it
worth the investment? There is no generic answer to that. The reality is a machine itself is worth a couple hundred bucks. This is a traditional insurance calculation. Security professionals should figure out the likelihood of their machine being stolen and its replacement value, and then make a decision on whether the insurance is a good bet – especially when there is no guarantee the machine will be recovered.
Another aspect of this decision isn't so much the value of the machine, but the value of the data it contains. If private data is kept on the device, then retrieving it as quickly as possible is critical, unless it has some type of full-disk encryption, so even if it is stolen and not recovered, the data on the computer is not exposed. Of course, if the machine's data is not backed up properly, the data could be invaluable.
Currently many more organizations opt for full-disk encryption over LoJack-type services. So I think it's safe to say that for a lot of organizations, the investment is not worth it.
Dig deeper on Information Security Incident Response-Detection and Analysis
Related Q&A from Mike Rothman, Contributor
In the world of security certifications, what is the GISP and how alike is it to the CISSP? In this security management expert response, learn about ...continue reading
Depending on your enterprise, it may or may not be necessary to utilize a QSA. In this security management expert response, learn how to determine ...continue reading
When developing software securely, what role does gap analysis play? In this security management expert response, learn how to implement gap analysis...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.