Windows Phone8/8.1 is normally a very secure OS looking at jailbreaks, though recently some phones were hacked at least to install apps from non-original stores. If you are a company IT-admin you may ask yourself: Even if we do not use the phones jail-breaked, is there a way to prevent this?
Yes, there is and it is even relatively simple. If you are using EAS (Exchange Active Sync) or an MDM system you can either encrypt the file system of the phone or turn off USB connectivity. Please be aware, there is no manual option for this!
Each of the measures disables the known attack angles and increases security for the phone quite a bit!