DOWNLOAD "Making BYOD Work for Your Organization" - Cognizant

More documents

Recommendations

Info

Virtualization. Providing access to corporate data and enterprise applicationsfrom a centralized location gives IT greater control over safeguarding enterpriseresources regardless of the devices in use. In this way, virtualization accommodatesthe diverse devices used at work and eliminates the IT and business costsof customizing apps and creating access mechanisms.“Containerization.” This approach separates corporate data into secure“container” structures on devices and allows organizations full control overthem. By using either a self-contained, secured application and data constructor a completely separate mobile OS via a hypervisor, organizations can isolateor contain corporate data on personal devices.With the hypervisor, multiple instances of an operating system can be run on asingle device, essentially creating virtual devices. This way, organizations cancompletely isolate the OS and partition the portion used for corporate applicationsand data from the one used for personal purposes. With the self-containedconstruct, applications and data are run in a separate memory space on thedevice. Access to this information is secured via additional authentications andcan be selectively removed in the case of device loss or employee retirement.These containerization methods allow IT departments to manage and monitorthe corporate applications and data effectively and securely without impingingon the personal data on employees’ devices.Encryption. This provides a strong layer of security for devices, applicationsand data. It also makes it difficult for anyone to view and obtain data from lostdevices without the encryption key.BYOD in phases. Embracing a limited BYOD model is key to handlingthe complexity that personal devices introduce. Carefully evaluating therequirements of employees based on their roles and limiting device supportwill help IT departments gain some control over management and securitychallenges. Allowing only secure and compliant personal devices for work canhelp organizations alleviate their concerns over security, support issues andcosts so they can create an infrastructure to accommodate them.Creating a Holistic BYOD Strategy and PolicyDeciding on a BYOD implementation path can be challenging for many organizations.The BYOD journey should begin with the understanding that the strategyneeds to be all-inclusive and balance the risks and rewards for employees andemployers.StrategyEssential to the formulation of a BYOD strategy is understanding employeeroles and how they relate to the use of mobile devices at work. Organizations shouldgroup users into broad categories that consider the kind of work they do on a dailybasis and the necessary IT requirements to support them. Ideally, BYOD should berolled out only to qualifying employees. The strategy should factor in the nature of thebusiness and industry in which an organization operates to identify how it can staycompliant, especially on data security/privacy and usage mandates. It should alsospecify the kind of device configurations, preferred vendors and brands thatsupport the organization’s business needs.An important consideration is balancing enablement with control. This willrequire organizations to decide on the proper application of MDM, MAMand MADP solutions and whether these should be managed in-house orcontracted out to vendors. The transition to BYOD should start only after anorganization assesses the net benefits it expects to realize from the initiative.June 2012 MAKING BYOD WORK FOR YOUR ORGANIZATION 8
Another key element is the cost BYOD entails in setting up new infrastructureand ensuring support for diverse technologies in a non-standard environment.Organizations should also determine the liability they are willing to assume (seeFigure 5), as well as the tax and legal implications of allowing BYOD, especiallywhen reimbursing employee expenses.To support BYOD, organizations also need to prepare enterprise applications towork with the allowed set of personal devices, which entails customizing, developingand updating applications to work with personal devices. Support is another criticalaspect, as employees need anytime, anywhere access to either live agents orself-help tools. A mix of sourcing, automation and strong technical customersupport is essential to a robust BYOD support model. A successful strategy willensure that IT and the business units agree on how to approach the BYOD program.Companies should consider a middle path between the two extremes of thecomplete freedom that employees desire and the full control thatorganizations seek over personal device work usage. A flexible and scalablestrategy will better accommodate the growing demand for BYOD, given the rapidlyevolving device technology landscape.PolicyImplementing the BYOD strategy is only possible with a comprehensive policy.To develop an effective policy, organizations need to define and understand factorssuch as:Which devices and operating systems to support.Security requirements based on employee role and designation.The level of risk they are willing to tolerate.Employee privacy concerns.Employee demand for freedom in how they work and use technology hasserious ramifications for IT environments. This demand is altering ITdepartments’ traditional structure and scope of control. Understanding this alteredEmployee vs. Company Liability• Better control over devices canbe applied (blocking ofmarketplace applications, etc.)• Better security• Comparatively easier forenforcing policy andcompliance• Need for application licensemanagementCorporateLiable,CappedExpenseIndividualLiable,No/CappedExpenseCorporateLiable,CompleteExpenses PaidIndividualLiable,CompleteExpenses Paid• Reduced IT overhead• Reduced device procurementcost (Cap-Ex)• Better choice of device• Challenges in deployingcorporate applications due tonon-standardization of OS• Better control over expenditure• Reduced device running cost (direct Op-Ex cost)Corporate liable devices are recommended for environments with higher data security risks (e.g., financial services);individual liable devices are recommended for environments with lower data risks (e.g., education).Source: CognizantFigure 59 FUTURE OF WORK June 2012
Page 2 and 3: Executive SummaryThe influx of pers
Page 6: Transforming the workplace. The com
Page 11 and 12: Users» Eligibility: Eligibility re
Page 13 and 14: Organizations currently have only t
Page 15 and 16: CreditsAuthor and AnalystAala Santh

DOWNLOAD "Making BYOD Work for Your Organization" - Cognizant

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?