These services do work, as long as the local police are responsive to finding and retrieving the device. Is it worth the investment? There is no generic answer to that. The reality is a machine itself is worth a couple hundred bucks. This is a traditional insurance calculation. Security professionals should figure out the likelihood of their machine being stolen and its replacement value, and then make a decision on whether the insurance is a good bet – especially when there is no guarantee the machine will be recovered.
Another aspect of this decision isn't so much the value of the machine, but the value of the data it contains. If private data is kept on the device, then retrieving it as quickly as possible is critical, unless it has some type of full-disk encryption, so even if it is stolen and not recovered, the data on the computer is not exposed. Of course, if the machine's data is not backed up properly, the data could be invaluable.
Currently many more organizations opt for full-disk encryption over LoJack-type services. So I think it's safe to say that for a lot of organizations, the investment is not worth it.
- Read about a recent LoJack release for laptops.
- Learn some common encryption worst practices that may be compromising laptop data.
Dig Deeper on Information Security Incident Response-Information
Related Q&A from Mike Rothman
Pirated software is still a major concern nowadays. Uncover how to prevent software piracy and protect your organization's intellectual property. Continue Reading
While liaison officer responsibilities vary depending on the company they work for, their strong organizational and communications skills make them ... Continue Reading
The CISSP certification can be a challenge to obtain. Mike Rothman unveils how to get on the right education and career tracks in order to get CISSP ... Continue Reading