风险行业：7 个您需要立即停止的 BYOD 习惯

You might like it, hate it, or have no idea what to think about it, but BYOD is here, and it's here to stay. You can't change that. But you can make it safer, more practical, and more useful to the organization by stopping these bad BYOD habits now.

1. Not Having a Solid BYOD Policy (or Not Reviewing It Often Enough)

Make it clear what users are and are not allowed to do with devices that hold sensitive company information. Also, make it clear what will happen if they don't comply.

Is your policy written and distributed to all the employees, or just something your team jotted down and stuck in a filing cabinet? The best policies are required reading for every worker and a signed form stating the workers have read and comply with the policy should be filed with the HR department.

2. Not Using Data Encryption

It's surprising how many of the recent data breaches involving high-profile organizations (including numerous government agencies where IT professionals should know better) have involved poor encryption or a complete lack of encryption. High-level encryption is essential today, especially in a BYOD environment.

3. Not Having Strict Authentication Requirements

What requirements do you have regarding multifactor authentication? If you don't require multifactor authentication, at least define and require strong password criteria for worker-owned devices. Just be sure that the various devices on the network are capable of any requirements you put in place regarding special characters.

4. Not Specifying Which Apps are Approved

Which apps can be used for work-related tasks? Which should not be allowed on the devices at all?

Shadow IT, or the installation and use of applications not approved by IT, is a growing problem with BYOD. Shadow IT can be a serious security issue, as well as affect the network performance. Make sure the apps are clearly named and defined, and that there is a procedure in place to have any new apps reviewed and approved or disapproved by IT and/or a manager with IT knowledge and experience.

5. Not Specifying Which Cloud Storage Solutions are Approved

There are numerous cloud storage platforms for mobile devices, such as Google Docs, Apple iCloud, Microsoft OneDrive, etc. Which will you allow? Which does IT deem unsafe? Be sure to specify what is and isn't an acceptable cloud storage platform for work related documents, images, etc.

6. Allowing IT to Collect Personal Data from Employee Devices

A sound BYOD policy has to go two ways. While it does protect the company (particularly the network and systems) from the users, it also needs to provide the user with privacy and protection, as much of the data, apps, etc. are owned by them. Make sure IT workers can't collect what they shouldn't be. Allow the user their own privacy regarding family photos, personal contacts, private emails, etc.

7. Not Giving IT the Tech to Wipe Devices

Unfortunately, sometimes a user and/or a device goes missing. Phones get lost and stolen, and workers quit or just don't come back one day. IT needs a way to wipe the device of all work-related data so that the company is protected no matter what happens to the user and their device.

Learn more about BYOD and how it can work better in your business by visiting NETSCOUT for more information and resources today.