Just 1 in 5 businesses have a Remote Working or Bring Your Own Device policy in place!
- even though over 4 in 10 say that staff in their organisation regularly use a personal device such as a non-work laptop for business purposes!
The 2019 Cyber Security Breaches Survey for the DDCMS shows that whilst businesses have taken considerable actions to improve their stance on cyber security, there are still areas that require significant development by implementing the appropriate policies.
Remote working isn’t a new concept. In fact, there’s an article posted by flexjobs.com about the history of working from home, which you can find on the following link: (https://www.flexjobs.com/blog/post/complete-history-of-working-from-home/),
However, what has changed significantly (in the last 10 years or so) has been the interconnectivity of devices that extend beyond a desktop computer or a laptop. In fact, since the launch of the i-phone in April 2007 (possibly even the Blackberry 5810 which launched even earlier in 2002), this led to fundamental change in the manner in which people perform their work duties, and the need for being based in the office.
Whilst there have been rapid advancements in technology that have increased the flexibility of remote working, what seems to have been left behind are the controls and policies set by the employer when it comes to the technical and physical security of devices when working from home or on the road.
This is an area that will likely come under further scrutiny since the EU GDPR and UK Data Protection Act 2018 came into force.
By having a company policy in place that covers your employees who work from home or remotely could significantly reduce the risk of any information on those devices being compromised.
Staff who use their personal mobiles for company use will often install applications and programmes that are probably not likely to be on the company “whitelist” of acceptable apps. Company staff may travel overseas – possibly to a different continent. The way in which they access the internet may require certain restrictions (i.e. they may not be permitted to use the hotel/coffee shop free wifi).
Martin De Bruin, CEO of Deslyon comments:
“You Just need to go to trade shows and industry events where you’ll see company representatives with laptops unattended, and sometimes even unlocked. How many stories do you hear where staff leave laptops in their cars and then the become the victim of a break-in? It doesn’t take long to work out what the consequences might be if company confidential information ends up in the hands of an opportunist.”
Of course if personal devices are being used in the work place, this can often mean that other family members use the same laptops/tablets/even home computers, so it is imperative that companies have a policy in place that covers the technical and physical security of information and assets, which staff understand and are aware of their responsibilities when it comes to their own devices, and the content within those devices.
For guidance on creating policies within your organisation or for more information about Deslyon services, contact firstname.lastname@example.org