An effective BYOD policy requires everyone in your business to pitch in and work together, so make a clear security protocol document and inform all members of staff of their responsibilities.
Establish a company-wide policy on the creation of strong passwords and two-step authentication for all business-related applications, programs and devices.
According to Verizon, 80% of hacking-related breaches in 2017 used stolen passwords and/or weak passwords, so use a random password generator and manager application to protect and store passwords.
Ensure users maintain up-to-date software and antivirus protection on all devices. If one member of staff’s phone or laptop has not been updated, your digital security will be at risk so check that all members of staff have automatic updating enabled on their devices.
It’s easy for members of staff to forget to update their device, so enabling automatic updating will help protect even the most forgetful of employees.
Be wary of devices automatically uploading information to the cloud. It might be great for personal files and pictures, but it may also put sensitive company information into an unsecured network which can easily be targeted.
Prevent your employees from using unsecured networks and public WiFi while working. If an unsecured network – like an open WiFi network in a cafe – has to be used, configure an assured data-in-transit encryption method such as a Virtual Private Network (VPN). This will help mitigate the risks of malware, man in the middle (MITM) attacks and spyware intrusions.
That’s not to say public WiFi should never be used, but you need be aware of the risks and steps needed to overcome them first.
There’s lots to consider while drafting your security protocol and, as it outlines your employees responsibilities, it’s the most important part of your BYOD policy. As part of this, ensure that your members of staff know basic cybersecurity best practices.
To make it easier for you, we’ve created this document that you can share with your employees so they know how best to protect their device. We recommend printing it out and passing it around the office so everyone is on the same page:
BYOD Best Practice