By Euan Henderson
Cyber Security Technologist
The use of staff-owned devices for work has become more common during the Pandemic.
As many organisations see the switch to home working as permanent and are letting office tenancies lapse, a robust approach must be taken to the security of Bring Your Own Devices (BYOD).
Home working brings with it more risk and it is recommended that the use BYOD for work is avoided where possible, due to the increased risk of attacks associated with such devices.
But there are instances when the use of BYOD is unavoidable. In this case, it is recommended that companies ensure their staff-owned devices are suitably risk-managed. The approach to this issue must be able to adapt to changing security and business requirements.
Devices should meet at least the minimum requirement of compliance with the organisation’s safety features such as strong authentication. It is also recommended the use of controls such as Mobile Device Management (MDM) and Mobile Application Management (MAM) are employed. This ensures compliance while maintaining usability.
The National Cyber Security Centre is also working with Google and Microsoft to assist organisations with the configuration of BYOD in both Office 365 and G suite.
For more information including the types of BYOD available, please visit:
https://www.ncsc.gov.uk/blog-post/bring-your-own-device-the-new-normal
To find out how to manage this issue when applying for Cyber Essentials, read our Blog Passing Cyber Essentials – get your submission right first time