Bring Your Own Device (BYOD), Best Practices in a Business Environment

by James S. McKinney
Oct. 2, 2017 0 comments Infosecwriters Pen Testing & Audits

Bring Your Own Device (BYOD) is a trending business strategy that allows employees to utilize up-to-date electronic devices that they are already comfortable with. Employers benefit from increased employee satisfaction and the reduced cost of providing and maintaining electronic devices. The application of Best Practices can help a business to profit from the BYOD approach while managing the risk. Mitigating the risks associated with BYOD such as increased potential for data leakage and the exploitation of vulnerabilities introduces a host of challenges for the Information Assurance (IA) department. Establishing an acceptable device list that identifies allowed platforms and IOS versions serves to manage the diversity of end points and minimizes threats associated with outdated software. In addition a Network Access Control (NAC) should be implemented to authenticate users and validate device security.

http://www.infosecwriters.com/Papers/McKinney_BYOD.pdf