BACKGROUND IMAGE: iSTOCK/GETTY IMAGES
Due to a growing number of employees using personally owned devices for work, a concept known as bring your own device (BYOD), a mobile governance program is an important part of risk management. Because a mobile governance plan covers a wide array of topics, the governance team should gather planning input from a variety of organizational personnel, including representatives from security, data management, the C-suite and human resources.
Once requirements have been gathered, the team can then create an enterprise mobility plan, which specifies what practices are deemed appropriate when using personally-owned devices for business purposes. The plan should state which mobile devices can access the company network, how they can access the network, whether antivirus software is required on the mobile device and who is responsible for purchasing and maintaining the antivirus software.