BYOD, or bring your own device is a term often used when referring to IT (Information Technology) policy where employees are allowed to bring personally owned mobile device(s) such as (mobile phones, laptops, tablets and other devices) and connect them to the corporate network to access privileged or private company information or applications.
Now I know what BYOD is, now why should I care? Well, the alarming truth is that BYOD has made very significant inroads into business corporate networks. As the growth and adoption of personal mobile devices grow, so does the potential for significant data breaches. For example, if an employee uses a smartphone to access the company network and then loses that phone, untrusted parties could retrieve any unsecured data on the phone. Another example of a bad BYOD policy is when personal phone number(s) are intermingled with business phone numbers. So if a salesperson were allowed to use their personal mobile phone number to receive customers calls and the salesperson left the company, then your customer may call your former employee who as moved on to work for your competition resulting in lost revenue and customer(s). A more troublesome and issue arises with the loss or theft of a mobile device which contains sensitive personal, financial, information. This information can then fall into the wrong hands where the information can be used for nefarious purposes.
A challenging but important task for companies who decide to utilize BYOD is to develop a policy that defines exactly what sensitive company information needs to be protected and which employee(s) should have access to this information. In addition, the company then must educate all employees on these policies and the risks of the BYOD to ensure the proper security of data.
Slick Cyber Systems recommends that each company should implement a BYOD policy and advise all staff to the possible implications of BYOD when accessing the business’s network.
For help with determining your companies BYOD policy please contact Slick Cyber Systems at (570) 371-5800 or visiting us at www.slickcybersystems.com for more information.