– By: Dr. Gene Lloyd –
The bring your own device (BYOD) idea that became popular a few years ago is one that I have always thought to be a bad idea and would never suggest that a company or employee ever enter into such an agreement for a few different reasons:
1. For companies, allowing an employee to connect their device to the network can be a large security risk. Even if you establish a policy that requires some level of administrative control over their device, you can only control it while it is in house, and lose all control when they leave for the day. An insider looking to steal data to quickly take advantage of having an internal connection and walk out the front door with all the sensitive data they desire. It’s hard to control something you don’t own, and the variety of devices a user may bring into the office can also create difficulties for your system administrators to effectively establish any real control.
2. For employees, you give up a lot of control over your device when you choose to connect it to the company network. A good company policy will require some level of control over your device, and the ability to remotely wipe it or search it under a variety of circumstances. If this is your personal smart phone, it likely contains a lot of personal information that you probably don’t want your co-workers or boss rifling through. Some companies have even offered employees the permission to use company smart phones for personal use, which is even a greater privacy concern since they have a right to confiscate the device anytime they desire.
The bottom line is that it’s better to keep a separation between personal and work systems, the risk for both employer and employee is too great. If it’s a policy your organization already has, you should seriously consider getting rid of it. As always, we are standing by to help you think through this process. Sign up below for access to our free video about saving time, money, and resources in cyber security and to schedule a free cyber security consultation with a proven expert in the field.
Sign up for a FREE consultation
Get a free 1-hour telephone consultation with a cyber security expert with no required commitments -- a $500 value!