Post on 09-May-2015
description
The Irresistible Force of BYOD –
How to Get it Running Securely
Presenter: Marco NielsenVice President, Servicesmnielsen@enterprisemobile.com
Our Agenda Today
Introduction
BYOD Strategy
BYOD Execution
BYOD Support
Summary
Q&A
Contact Us
Marco Nielsen, VP of Services, Enterprise Mobile
Meet Today’s Presenter
Marco is an internationally recognized expert in mobile device management and mobile devices, with nearly 20 years’ experience spanning systems architecture, operating systems, hardware and communications. Marco brings a broad perspective on how to design and deliver a successful enterprise mobility initiative.
What is “BYOD”?
Bring your own device (BYOD) is the policy of permitting employees to bring personally owned
mobile devices (laptops, tablets, and smartphones) to their workplace, and use those devices to access
privileged company information and applications.
BYOD“Bring Your Own Device”
According to Forrester, there will be 1 billion smartphone
customers by 2016, with 257 million smartphones and 126
million tablets in the US alone.*
*Source: Forrester – Mobile is the New Face of Engagement
BYOD Strategy: Gathering User Segments
Need for Mobility
Need
for
Su
pp
ort
Low High
Low
H
igh
Admin/ClericalCall
Center/SupportFinance
IT SupportIT Educator/TrainerTechnical Support
ExecutivesSales RepsHealthcare
Workers
EngineersIT Staff
Technical Sales Staff
User Requirements
Human Resourc
es
Sales
C-Level Execs
BYOD Strategy: Gathering Requirements
BYOD Strategy: Policy Creation
Device and Data Plans
Compliance
Security
Applications
Agreements
Privacy
Services
BYOD Strategy: Policy Creation – Device/Data
Questions to consider:◦ What mobile devices will
be supported: only certain devices or whatever the employee wants?
◦ How will the procurement process work?
◦ Will the organization pay for the data plan at all? Stipend or will employee submit expense?
Policy Creation - Device & Data Plans
BYOD Strategy: Policy Creation - Compliance
What regulations govern the data your organization needs to protect? ◦ Example: HIPAA
requires native encryption on any device that holds data.
◦ International or state laws
Policy Creation - Compliance
BYOD Strategy: Policy Creation - Security
What security measures are needed?◦ passcode protection◦ jailbroken/rooted devices◦ encryption◦ device restrictions◦ iCloud back-up◦ consumer content
solutions What is the employee
perception of security?
Policy Creation - Security:
BYOD Strategy: Policy Creation – Apps
What apps are forbidden at your organization?
What are the approved and supported Content Management solutions?◦ Dropbox, SkyDrive etc.
How to handle malware?
Policy Creation – Apps
BYOD Strategy: Policy Creation – HR/Legal
Does your organization have an Usage Agreement for employee access to corporate information?
Consider including:◦ Opt-in/out clauses ◦ What the company will monitor and
perform on mobile devices◦ Specifically outlines what happens if
an employee does something bad ◦ When and how a company will
perform a remote wipe of company information
Policy Creation – HR/Legal
BYOD Strategy: Policy Creation - Services
What kinds of resources will the employees have access to?◦ Corporate email, certain
wireless networks, VPNs ◦ You could, based upon
your user segmentation, provide access only to certain networks or apps.
Policy Creation - Services
BYOD Strategy: Policy Creation - Privacy
Your #1 priority is to protect your network and sensitive company information, but you also need to think about the privacy of your employees. ◦ What data is collected from
employees’ devices?◦ What personal data is never
collected?◦ Will the inadvertent remote
wipe of personal data make for an unhappy employee?
Policy Creation - Privacy
BYOD Strategy: Policy Creation - Processes
Employee Qualification: ◦ Who qualifies? ◦ Review the labor laws for exempt and non-exempt
employees. ◦ Hourly employees may claim overtime based on
reading email on a personal device. Restrictions: ◦ What are the restrictions on enterprise security, data
usage and privacy in the organization? Employee Termination:
◦ Data and phone number transition at termination.◦ Is there a clear process and who does what?
Policy Creation - Processes
Are you confident in the security of BYOD management in your organization?
YES No?
BYOD Execution: Management Solutions
MDM
MAM
BYOD Execution: MAM Best Practices
App installation and configuration
App wrapping and containerization
Relevant acceptable app use policies
BYOD Execution: Security Best Practices
Control wireless networks
Control app access
Keep your OS & firmware current
Back up your data
Password protection
Don’t store personal financial data on devices
Beware of free apps
Try antivirus/scanning software
Use MDM and MAM software
Remote device wipe
BYOD Support: Best Practices
SUPPORT Spell it out
Consider loaner devices
Provide additional support for execs
Educate and enable employees
Utilize outside support
82%of surveyed companies in 2013 allow some or all workers to use employee-owned devices.
BYOD IS POPULAR – AND GROWING!
Summary
BYOD
Contact us
https://twitter.com/entmobile
http://www.linkedin.com/company/enterprise-mobile
https://www.facebook.com/entmobile
http://www.enterprisemobile.com
Marco Nielsen mnielsen@enterprisemobile.com
While every care has been taken to ensure that the information in this document is correct, Enterprise Mobile cannot accept (and hereby disclaims) any responsibility for loss or damage caused by errors or omissions. All
rights reserved. No part of this document may be reproduced without the prior permission of Enterprise Mobile. ©2013 Enterprise Mobile.
Image Sources: MorgueFile: Slide 16: dhester, Slide 17: mconnors, Slide 18: Melodi2,
Slide 20: doctor_bob, Slide 21: dhester, Slide 22: Alvimann
www.enterprisemobile.com
Thank
you!