You know and love our Must-Read IT Blogs lists, but now, say hello to the nonprofit side.
From iPhones and Android devices to tablets and notebooks, employees are increasingly bringing devices from home to the office for both work and personal reasons. Once they arrive, they expect to be able to join those devices to the network, either to access shared resources or simply to connect to the Internet. Whatever a company’s stance on the “bring your own device”(BYOD) trend, a few simple tips can help protect the network.
As with any IT security matter, it’s always best to start with a statement of the company’s policy on BYOD. This requires coordination with any applicable security requirements as well as with the IT chain of command inside the company. A policy governing this type of activity in the business may already be in place. Both users and administrators will appreciate a clearly written statement of what is and is not acceptable use of personally owned devices and who is eligible for BYOD programs.
One of the best controls for protecting the enterprise network from the risks borne by personally owned devices is to create a separate wireless network specifically for these devices. This restricts users’ ability to put company-owned devices at risk by limiting their access to other parts of the network.
In the case of employees who simply want to gain access to the Internet, this approach should be sufficient. If employees need to access company resources, they may do so by first connecting to a virtual private network from the BYOD network. Chances are good that the company already has a VPN set up for teleworkers and has controls in place to limit the damage that non-enterprise computers can cause corporate systems.
The company should also clearly state the security requirements for different devices and may wish to consider limiting BYOD devices to those that have been preapproved and are governed by configuration standards. For example, security requirements for smartphones might dictate the following:
It’s easy for users of BYOD devices to quickly blur the line between corporate and personal responsibility. The company support staff should clearly define the level of service that it will provide for personally owned devices, from some support to no support, and varying amounts in between; for example:
The BYOD movement is being propelled by the rapid adoption and ubiquitous nature of smartphones. As these devices increase in variety and number, businesses will undoubtedly encounter a growing number of users who want to connect to company networks. By following the advice presented here, agencies can ensure that they remain a step ahead of this trend.