A systematic approach to investigating how information security and privacy can be achieved in BYOD environments

Abubakar Garba Bello, David Murray, Jocelyn Armarego

Research output: Contribution to journalArticlepeer-review

Abstract

Purpose-This paper's purpose is to provide a current best practice approach that can be used to identify and manage bring your own device (BYOD) security and privacy risks faced by organisations that use mobile devices as part of their business strategy. While BYOD deployment can provide work flexibility, boost employees' productivity and be cost cutting for organisations, there are also many information security and privacy issues, with some widely recognised, and others less understood. This paper focuses on BYOD adoption, and its associated risks and mitigation strategies, investigating how both information security and privacy can be effectively achieved in BYOD environments. Design/methodology/approach-This research paper used a qualitative research methodology, applying the case study approach to understand both organisational and employee views, thoughts, opinions and actions in BYOD environments. Findings-This paper identifies and understands BYOD risks, threats and influences, and determines effective controls and procedures for managing organisational and personal information resources in BYOD. Research limitations/implications-The scope of this paper is limited to the inquiry and findings from organisations operating in Australia. This paper also suggests key implications that lie within the ability of organisations to adequately develop and deploy successful BYOD management and practices. Originality/value-This paper expands previous research investigating BYOD practices, and also provides a current best practice approach that can be used by organisations to systematically investigate and understand how to manage security and privacy risks in BYOD environments.
Original languageEnglish
Pages (from-to)475-492
Number of pages18
JournalInformation and Computer Security
Volume25
Issue number4
DOIs
Publication statusPublished - 2017

Keywords

  • computer security
  • mobile computing
  • privacy
  • risk management
  • security measures

Fingerprint

Dive into the research topics of 'A systematic approach to investigating how information security and privacy can be achieved in BYOD environments'. Together they form a unique fingerprint.

Cite this