More than one-fifth of organizations have no policy in place to govern the use of personal mobile devices on their network. Security expert Chris Silva says a mobile device security policy is the most important step to handling the risk inherent to personal mobile-device use. Silva said it includes clear definitions of user-risk profiles, devices that can be supported and where to draw the line on what’s allowed, among other considerations. He also suggests drawing a line in the sand and clearly defining what will be allowed and what will not.”]