Getting Your Employees to Buy into Your BYOD Security Policy

Getting your employees to buy into your BYOD security policy can be challenging. I was recently asked by Sue Poremba, Business News Daily, what pieces of advice I could share with employers to get employees to follow the company’s BYOD security policies. In addition to the tips includes in Sue’s article, I’d like to share my thoughts on the pros and cons that enterprises should consider when looking to implement a BYOD program:

Pros of a BYOD policy for the enterprise include: 

  • An attempt to foster employee morale by granting employees the ability to adopt new platforms of their own choosing

  • Eliminating a potential tax reporting burden if the IRS decides that company provided smartphones and tablets are taxable benefits

  • Potential time savings by avoiding corporate dialing and data plans with carriers

Cons facing companies when they adopt a BYOD policy include:

  • Higher support costs — support staff may need to be trained to answer questions about a wider variety of platforms;  multiple answers to address a single issue may need to be established, and some support staff specialization may occur

  • Increased security risks — not all mobile platforms support all security features

  • Handling of corporate — understanding where corporate data may reside, ensuring compliance with data retention policies, eDiscovery, and ensuring that all corporate data is being properly handled

  • Balancing corporate requirements/liabilities — organizations are not yet requiring employees to sign liability waivers to protect companies that may accidentally ​destroy personal data if a device has to be remotely wiped.

Despite the risks, the desire to achieve cost savings and improve employee morale will continue to drive BYOD for the foreseeable future.