Sure BYOD seems like a good idea, but is there a down side?

Sure BYOD seems like a good idea, but is there a down side?
Image Credit: Jeramey Jannene

Who’s responsibility is it to make sure that a company’s employees have proper communication tools? In the past, the answer to this question was simple – these tools were complicated and expensive and because of the importance of information technology it was the company’s job to properly equip their employees so that they could stay in touch. Well, things have changed. Now it’s the company’s employees who are showing up with the latest cell phones and tablets and they want to hook into the company’s network. What’s a CIO to do?

The Issues That BYOD Brings To The Table

As the person with the CIO job, you need to realize that the bring your own device (BYOD) craze that is going on right now has two sides to it. The first side is fantastic for the company. Consumer electronic prices have gotten so low that the company’s employees can now purchase mobile phones and powerful tablets that only a few years ago the company would have had to provide them with. However, on the other side of this issue is the fact that what this means is that a lot of company data is now going to be contained on devices that the company does not own.

It does not take the world’s smartest CIO to very quickly start to realize that there could be an issue here. Here’s a quick scenario that just might send chills up your spine. An employee is out sick for a period of time and the company IT team is requested to retrieve some important documents off of their personal iPad which has been granted permission to access the company’s network. In the process of searching for the requested files, the IT team stumbles across a collection of child pornography. Quickly a whole host of legal issues arise: did they have permission to look at those files? Are they now required to call the authorities? Have the employee’s privacy rights been violated?

Just to make things even more complicated, consider this scenario. In the course of a routine round of layoffs, an employee is let go. As a part of the standard IT process for dealing with terminated employees, the company remotely wipes his iPad of any and all company data. However, the wiping process also deletes the former employee’s personal data. Is this now the company’s fault?

How To Properly Handle BYOD

As person in the CIO position you clearly want to tap into the benefits that BYOD brings to the company. However, at the same time it should be pretty clear that there are a lot of big issues that come along with all of the good things that this new way of connecting with your employees brings with it. What you are going to have to do is to make sure that some polices are in place.

The company’s polices on BYOD have to be very, very clear. You don’t want to have anyone coming back to you and saying that they had interpreted the company’s policy differently than you had intended. At a minimum, your company BYOD policies are going to have to lay out who owns the device in question along with what information on the device the company can search, view, and wipe.

You are going to have to make sure that each employee who is participating in the company’s BYOD program knows exactly what they are signing up for. You are going to have to keep an eye on the employees who are participating in the BYOD program and the IT department is going to have to make sure that they are following the rules. If they choose not to, then you’ll either have to kick them out of the BYOD program or, in some cases, fire them.

What All Of This Means For You

We are living in interesting times. Once upon a time in order for an employee to keep in contact with your company, the company had to equip them with some sort of expensive communication tool. Now those very same employees are showing up with their own very expensive communication tools which are often better than what the company could provide them with. What is the role of the CIO in this brave new world?

Clearly it is in the company’s own best interests to allow their employees to connect their personal devices to the company’s network – it will save the company money and it will make the employee happy. However, there are a lot of questions that need to be answered before this happens. Many of these questions revolve around data and what happens to it if the employee leaves or loses their device. Write down the rules and make sure that everyone understands them.

Since we are living in a new world with new rules, not everyone has the same understanding of just exactly how things are supposed to work. What this means for CIOs is that we need to take the time to not only put the correct processes in place, but to also clearly communicate to the company’s employees how it all works. BYDO can be a good thing, just make sure that everyone knows how to play the game.

- Dr. Jim Anderson
Blue Elephant Consulting –
Your Source For Real World IT Department Leadership Skills™

Question For You: Do you think that there should be any limits placed on what types of personal devices can be attached to the company’s network?

Click here to get automatic updates when The Accidental Successful CIO Blog is updated.

P.S.: Free subscriptions to The Accidental Successful CIO Newsletter are now available. Learn what you need to know to do the job. Subscribe now: Click Here!

What We’ll Be Talking About Next Time

By now everyone who has the CIO job has heard about “big data”. What this is all about is using modern analytical tools to process very large amounts of data in order to identify trends and opportunities for the business that were previously unknown. The IT department plays a leading role in the big data revolution because we are the ones who are keeping all of the data and we are responsible for purchasing and using the tools that will allow us to process that data. This is all well and fine, but once you have these shiny new tools, where is the best place to apply them? It turns out that the answer to this question just might be the call center.

{ 0 comments }

CIOs have to learn how to defend against the bad guys

CIOs have to learn how to defend against the bad guys
Image Credit: Alyse & Remi

The person with the CIO job needs to understand that his or her company is under constant attack. Yes, some of the attacks come from hostile hackers who are always probing your company’s IT defenses trying to find a way in; however, we must not forget the impact that severe weather can have on the operations of both our IT departments and our company. Clearly, CIOs need to learn how to defend their departments and their companies against all the bad guys…

Why Bother?

I’m going to be the first one to admit this: sometimes when we’re faced with the never-ending challenge of trying to secure the company’s IT resources against a threat that is not always visible, it can be very easy to just throw our hands up and say “I give up”. I mean, if we just put this problem on the back burner for a while would anything bad really happen? There are other bigger companies out there – won’t the bad guys go after them first? Perhaps, but then there’s that weather issue – it doesn’t play favorites!

What this means for us is that it’s really a critical part of our job to get our company ready for what might be coming down the road. If we step back for just a moment, it will become very clear to us why spending the time creating a defensive shield for our IT systems is so very important. Our companies now run on our IT systems. If they were to become unavailable because of either a hacker or weather, then most if not all of the company would grind to a halt. It doesn’t take an accountant to figure out just how expensive that would be!

Not all risks are the same – some you need to be worrying about right now; however, some are a bit further off in the future. In order to make sure that you are creating the right types of defenses that you are going to need in order to deal with your immediate problems, you are going to need to create an enterprise risk management team. Their goal will be able to help you to prioritize what defenses you should be working on now.

What Steps A CIO Can Take In Order To Be Defensive

Knowing that you need to be taking steps to create effective defenses is a great first step. However, now you need to actually take action in order to protect your company’s IT systems. The one thing that we don’t have any control over is when a hacker or severe weather is going to strike so it is our responsibility to always be ready.

Since we can’t be sure exactly what kind of problems our IT department is going to be facing, remaining agile is one of the most important things that we can do. There are many different ways to go about doing this. The first is to take the time to prioritize your security efforts. What needs to be done now and what can be put off for a while? Additionally, you need to make your IT systems even more resilient. This means that you are going to have to prevent even minor interruptions from shutting you down.

The good news when you are faced with a task that is as large and varied as this one is that you are not alone. Other CIOs are facing the same challenges. In order to make sure that you are successful, you can both receive and share information with other organizations. Especially important are the Federal Bureau of Investigation (FBI), the Department of Homeland Security, and other groups related to your industry.

What All Of This Means For You

Now that you have the CIO position, you are responsible for keeping the company’s IT systems up and running. This means that you need to find ways to guard against hackers and weather related disasters.

In order to make sure that you are always prepared, you are going to have to adopt a strategy of being flexible. Your adversaries will always be changing so you need to be changing also. CIOs also have to remember that one of their greatest defenses is good communication. Take the time to talk with others in the industry and you’ll always know what is going on.

Given the importance of information technology, keeping your company safe and secure is almost a full time task for CIOs. However, if we remember to remain agile and take the time to communicate with others, then we’ll be able to stay one step ahead.

- Dr. Jim Anderson
Blue Elephant Consulting –
Your Source For Real World IT Department Leadership Skills™

Question For You: How much of a CIOs time do you think should be spent on creating IT defenses?

Click here to get automatic updates when The Accidental Successful CIO Blog is updated.

P.S.: Free subscriptions to The Accidental Successful CIO Newsletter are now available. Learn what you need to know to do the job. Subscribe now: Click Here!

What We’ll Be Talking About Next Time

Who’s responsibility is it to make sure that a company’s employees have proper communication tools? In the past, the answer to this question was simple – these tools were complicated and expensive and because of the importance of information technology it was the company’s job to properly equip their employees so that they could stay in touch. Well, things have changed. Now it’s the company’s employees who are showing up with the latest cell phones and tablets and they want to hook into the company’s network. What’s a CIO to do?

{ 0 comments }

CIOs Need To Always Be Experimenting

March 11, 2015

How good of a CIO are you? I’m willing to bet that no matter how good you think that you are, you also realize that you could probably be better. We all believe this. However, now we run into the big question: how can a CIO become better? It turns out that the answer is […]

Read the full article →

How To Make Your Business Process Management (BPM) Mobile Friendly

March 4, 2015

So just exactly what is a business process? In a nutshell, it’s how your company does business. Now this might sound rather simple to you, but it turns out that most of the business processes that our firms use to do business are complicated multi-step beasts and are increasingly dependent on the importance of information […]

Read the full article →

Finding The Time To Be Strategic

February 25, 2015

Pick up any IT trade journal and you’ll probably find an article that is telling CIOs that because of the importance of information technology they need to get a seat at the company’s planning table. In order to do this, they need to become more strategic. I think that we can all agree with this […]

Read the full article →

CIOs Need To Learn How To Manage Digital Cowboys

February 18, 2015

In the modern IT department, CIOs are called upon to perform many different tasks. I believe that we can all agree that one of the most important of these tasks is managing and mentoring the next generation of IT leaders. Today’s new arrivals seem to be so different from when we joined the firm that […]

Read the full article →

CIOs Fix Outsourcing Problems By Putting The Fox In Charge Of The Chickens

February 11, 2015

I’m sure that by now you’ve read some of the stories that are out there about CIOs who managed to get themselves into outsourcing contracts that turned out badly. The reasons that the deals took a turn for the worse are many and varied, but the end result is the same: the CIO’s customers were […]

Read the full article →

How CIOs Can Use Words To Boost Their Power And Credibility

February 4, 2015

As the person with the CIO job, because of the importance of information technology your company expects a great deal from you. However, if you have not managed to gather the power and the credibility that you are going to need in order to successfully accomplish your job, then it’s going to be very hard […]

Read the full article →

5 Trends In Outsourcing That CIOs Need To Know About

January 28, 2015

Back in the golden days of outsourcing, CIOs could just pick up the phone, get in contact with the head of their outsourcing contractor in India or China, and scale their team up or down as conditions required. However, times have changed and now that everyone is starting to understand the importance of information technology, […]

Read the full article →

Is This The Death Of Offshoring?

January 21, 2015

Once upon a time, offshoring was the answer to every CIOs dreams. It offered a great way to significantly grow the IT department while at the same time reducing the total costs of running the department. What make it even better was that somebody else had to deal with the real-world issues of managing people […]

Read the full article →