In the Third Annual ASIS Social Media Survey, respondents identified tablets and smart phones as the two biggest
technologies that will drive our industry. The pressure that the leaders of many organizations are facing to allow the use of these personal mobile devices (also known as bring your own device or BYoD) is increasing. This pressure comes not just from employees who want to carry one device and access both organizational data and personal data, but comes from a desire to achieve information technology cost reduction, and the enablement of the productivity enhancements that come through secure corporate mobile connectivity. This pressure represents two disruptive factors that are influencing both society and business: the ‘consumerization’ of information technology and the increased mobility of information technology.
Permitting non-organizational assets to connect to the corporate network introduces additional risk. Is your organization experiencing such pressure? What are the business and technological drivers? Who are the stakeholders in your situation that will be exposed to the accompanying increase in risk? Who is affected by permitting BYoD in the enterprise? Can you mitigate the risk to an acceptable level? What are the specific threats and risks that BYoD will introduce?
These types of questions will be explored in the presentation Personal Mobile Devices in the Enterprise: Security & Privacy Issues. At the end of this presentation you should have an appreciation of the threats and risks that accompany BYoD, both from a security and privacy perspective; understanding who the stakeholders are that will be affected, and have an understanding of the security best practices that can help mitigate some of the risk.
Tuesday, September 11
3383: Personal Mobile Devices in the Enterprise: Security & Privacy Issues
Lawrence Dobranski, CISSP-ISSAP, CISM, CSSLP
Director, ICT Security
University of Saskatchewan