Is your BYOD policy working? If not, here’s what can be done

Mobile Security

Although a number of CISOs hate the phrase BYOD, the fact is many organizations have been forced to allow staff to log onto corporate networks with personal devices, hopefully agreeing to follow certain practices or use personal devices that segregate personal and corporate data.

So like it or not infosec pros are obliged to craft an official bring-your-own-device policy, even if it’s only that a small group of executives have to use corporate-owned devices.

But that doesn’t mean everyone follows the rules. An article this week noted a vendor found 57 percent of employees and 38 per cent of IT professionals who responded to a survey ignore their company’s BYOD program, fearing execs  would have too much visibility into the end user’s personal data. And those are the outliers who thumb their noses at BYOD policies for an alleged noble reason.

What’s the problem? It may be, the piece suggests, that staff haven’t bought into the program because they weren’t fully consulted. “Effective policies need to be created as a group in order to gain a sense of ownership,” a cybersecurity consultant is quoted as saying. “Make sure HR, finance, marketing, communications, executives, are all represented and come up with a realistic (not draconian) policy that mitigates risks while still enabling the business.”

Still, the piece adds, some experts also think certain organizations with a low tolerance for risk may have to put their foot down and insist no personal devices can access corporate assets. At the very least CISOs may have to create a so-called CYOD policy — ‘choose your own device’, where staff can buy their own smartphones and tablets, but from a limited list of secure devices.

Mobility has brought a world of benefits to organizations, but also a world of headaches. CISOs have to work with staff, while employees have to understand the price of risky behaviour.

Read the full story here.

Would you recommend this article?

0
0

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication. Click this link to send me a note →

Jim Love, Chief Content Officer, IT World Canada
Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Related Tech News