The launch of the Apple Watch heralds the transformation of BYOD into BYOX. How can businesses accommodate #GenMobile’s adoption of wearables, while still staying in control?
“Gorgeous”. “Beautiful”. “Actually useful”. “Epic”. The accolades from the reviewers of the Apple Watch keep pouring in, and the new device – though not the first of its kind in the market – holds the potential of becoming as ubiquitous as the iPhone or the iPod.
However, the expected popularity of the Apple Watch raises interesting challenges for CIOs and IT managers. The Apple Watch is merely a herald of an expected tsunami of BYOD smart devices and Internet-of-Things wearables into the workplace, potentially opening up new risks to corporate data privacy and security.
It’s highly likely that the first Apple Watches in the workplace will be personally owned. Yet, these devices will be able to interact with corporate networks; and access, download and store company data. Other wearables (not the current version of the Apple Watch) come with built-in cameras. In fact, one of the more interesting features of the Apple Watch is the ability to tether to, and control, iPhones over a remote connection.
IT departments will be understandably worried about the impact of the Apple Watch on the workplace. Even though many organisations have already adopted BYOD policies, several new conundrums will pop up.
At the very top of the list: is it appropriate to allow wearable devices to connect to enterprise networks? What if the device is already tethered to a smartphone that has already been given access?
Bear in mind that, according to a study[1] by Aruba Networks, the new generation of employees – dubbed #GenMobile – expect mobility at the workplace to be a given, so any blanket decision to ban such devices from the workplace will be highly unpopular. In fact, almost two thirds of study respondents say they use mobile devices to help them manage their work and personal lives better.
If the decision is made to accept Apple Watches and other wearables into the organisation, will existing BYOD policies that govern the use of corporate data be enough – will new policies be required?
When tinkering with these policies, CIOs have to keep in mind the fact that there will be other IoT-based devices coming along that could be embedded into an employee’s clothing or even office pantry appliances. In fact, the acronym “BYOD” will soon have to be replaced with “BYOX”, with the “X” symbolizing “practically anything”.
Once policies have been amended appropriately, then – and only then – can CIOs turn their attention to the underlying communications network. Many IT organizations have already put in place solutions that can secure any mobile device that connects to corporate Wi-Fi; giving them complete visibility of the number, type and frequency of mobile devices assessing their network. What’s more, these platforms are also capable of enforcing flexible security policies that are capable of analysing – and acting on – the context of how an employee uses the mobile device. For instance, an employee using an Apple Watch at a coffee shop to access corporate data may not be granted the same level of access as one who uses a PC during office hours. Depending on the context, different policies can be applied to make sure that the right balance between flexibility and security is met.
Given these considerations, CIOs will need to skilfully juggle the competing requirements to arrive at an enlightened BYOX policy that is most appropriate to company’s needs. The Apple Watch certainly won’t make that juggling act any easier. But it will certainly make it more beautiful.
