BYOD Risk Mitigation
Here is a list of identified BYOD risk mitigation controls. The mitigation process is introduced in most cybersecurity frameworks.
Mobile Device Management
Mobile Device Management strives to reduce the hazards of utilising mobile phones and tablets, such as device loss/theft/compromise, by enabling tracking and remote device wiping. Malware detection, enabling security requirements (pin/fingerprint/face id/etc), vulnerability detection, minimum iOS/Android versions, and minimum App versions are all features of MDM.
Mobile Application Management
MAM enables the separation of personal mobile apps and data from corporate/organizational apps and data. App sandboxing and data encryption are two techniques. MAM works in tandem with an Enterprise App Store.
Virtual Hosted Desktop
Use of a controlled virtual desktop hosted on COPE/BYOD or company-owned devices with segregation/isolation from the host environment.
Next-Generation Endpoint Management
Endpoint malware detection using next-generation technologies such as behaviour analysis, exploit mitigation, traffic analysis, and deep learning for BYOD Risk Mitigation. NextGen and EDR are frequently used interchangeably (endpoint detection and response)
Network Access Control
Network access controls are used for both ethernet/wireless/virtual device interfaces to ensure that only permitted devices (corporate/BYOD/guest) can connect to their approved networks. NAC, in conjunction with a Trusted device system, can be some of the foundations for implementing a Zero-Trust policy.
Data leakage Protection
DLP includes systems that monitor classified data in order to detect and prevent data leaks outside of the organisation.
Choose Your Own Device
A list of gadgets purchased by a person that can be used for both corporate and personal purposes, but with corporate policies and management in place for BYOD Risk Mitigation. Monitoring (MDM) may be required by the organisation, as well as the implementation of device end-of-life and staff termination regulations.
Corporate Owed Personal Device
Device purchased by the corporation/organization with permission to use it for both corporate and personal purposes, but with corporate policies and management in place. Employees who are furnished with company-issued mobile phones are a common example.
