How to Compromise Between Corporate & Personal Security with Your BYOD Policy
For bring-your-own device initiatives to work, data security must be ensured while respect is given for employee privacy.
Mobile Device Management Software (MDM) programs are one of the most common ways that companies can help prevent data breaches and ensure that key security functions protecting confidential data are in place to wipe data in the event an employee leaves the company.
However, BYOD encompasses personal devices, and thus many employees are reluctant to turn their phone over to the IT department to install MDM platforms.
The latest Facebook breach has brought privacy concerns top of mind for many, with more employees questioning the amount of data their employer can retrieve about them through their personal devices with an MDM.
Installation of an MDM on a personal device is optional in most companies – but so is being able to use your personal devices for work. You can’t BYOD without the MDM.
The juggling act of personal privacy vs. corporate privacy is tough for many end-users to take – and honestly, who can blame them?
The Hidden Dangers of MDM for Business
Shadow IT is a growing concern for IT departments who allow BYOD with use of a sanctioned MDM. Shadow IT refers to end users finding alternate methods to access data through unauthorized tools and applications. If an end user has work stored on the server, but can’t access the server due to lack of an MDM, they could theoretically upload confidential information to a third-party cloud service like Google Docs and access the same data from their login on their device and nobody is the wiser.
Shadow IT is a growing challenge for CIOs and other security professionals, as the organization lacks control or visibility of what data is out there and where. MDM devices are not HIPAA or PCI compliant and only offer partial support for cloud apps and native apps.
Alternatives to MDM
Agentless BYOD solutions are the latest mechanism being employed to alleviate deployment and adoption challenges posed by MDM. While MDM is favored by many security pros at enterprise corporations for their monitoring capabilities, agentless mobile security solutions are viewed more favorably from an employee privacy standpoint. Security administrators can govern device access and extend encryption of sensitive data to various popular cloud apps like G Suite, Office 365, Slack and Sales Force. Agentless BYOD solutions also allow for remote wiping of company data and incorporate data loss prevention measures without intruding on personal space.
Develop a BYOD Strategy with ThrottleNet
ThrottleNet managed network customers can work with their Virtual CIO to incorporate a working BYOD policy that everyone is comfortable with into your organization. Learn more about ThrottleNet Managed Network, Crew Chief & Contact us today.