Truth is, BYOD puts control into the hands of employees who don't really care about security until it's too late. The Mozy survey found that 78 percent of lawyers, for instance, were either not at all concerned or only somewhat concerned about the security of their company or client data they carry on their devices.

It's important to note that BYOD is often used synonymously with "consumerization of IT" and even mobility. But BYOD differs because of its "personal use" nature. That is, employees own the devices and thus feel empowered to download and visit whatever apps and Websites they choose.

The good news is that Apple has made big strides to make iPhones and iPads--the preferred devices of BYOD employees--secure in the enterprise, as opposed to reportedly leaky Android devices. Consider Bank of the Ozarks, a 100-year-old community bank headquartered in Little Rock, Arkansas, which is working to before following through on a BYOD program.

Other vendors and service providers have recently jumped into the BYOD security fray. This week, Druva introduced inSync, an endpoint data protection solution. Last month, IronKey, an enterprise management software vendor, unveiled IronKey Trusted Access, a cloud service that lets users access corporate applications and data over the Web on their BYOD laptops.