My opinion as a corporate email administrator and IT security and compliance policy writer.... (edit - and experienced android rooter)
Although I would always ensure my policy dictates rooted phones are not used, the risk doesn't lay within root itself. Nothing can get root without your say so and applications are sandboxed meaning they cannot Install themselves without user intervention.
So long as you follow simple rules, you should be fine
1) Use reputable custom roms. Stay away from betas, tests and leaks
2) only install reputable applications from reputable sources. Stick to play and xda. Don't be an early adopter.
3) use a secure kernel. Do not opt for insecure ones (Insecure adb)
4) keep the device password protected at all times.
5) ensure the strictest settings in the supersu app. Monitor it regularly
6) use flashify to flash stock recovery and bootunlocker to lock your bootloader - your everyday state MUST be stock recovery and locked bootloader. Unlock bootloader and flash recovery to flash roms and kernels but ensure you flash stock recovery and re lock
7) exercise common sense
Although that said:
1) if your company IT /AUP policy dictates no root, you'd better comply. I've worked in similar places where they have blanked out camera plates on blackberrys and check your messages
2) if the app doesn't work with root anyway..
Personally, if you really want corporate email on your phone AND freedom, get a second phone
Sent from my Nexus 5 using Tapatalk
Last edited by danarama; 7th February 2014 at 10:24 PM.