logo

Aztek IT Risk Assessment (DOC)

   

Added on  2020-03-23

17 Pages4326 Words45 Views
Running head: RISK ASSESSMENT1AztekIT Risk Assessment- Personal DevicesNameInstitutional AffiliationDate

RISK ASSESSMENT 2Executive SummaryAmong the major challenges that the ICT management team face in today's technologicalageis mostly related to their Bring-Your-Own-Device (BYOD) policies. BYOD refers to policiesthat stipulate the rules and regulations governing the employees’ access to an organization’s IT resources using their devices such as laptops, smartphones, or tablets (Miller, Voas & Hurlburt, 2012).The BYOD challenge is consequent of consumerization of IT whereby information technologies emerge in the consumer way before organizations or even governments adopt the technologies (Thompson, 2012). The result of this concept is a workforce with new, better, and improved technology as compared to their organization’s technology framework (Scarfo, 2012). Furthermore, most employees tend to work during their free time and do their personal stuff during working hours. Several risks may arise from allowing personal devices in Aztek’s work environment. These risks include the reduced system security assurance by Aztek management, difficulty in distinguishing between thepersonal and work-related use of these devices, risk of unsecured use of sensitive information, and the likelihood of these devices getting lost or being stolen along with the organization’s sensitive information (Morrow, 2012). Adopting a BYOD policy will also have implications on Aztek’s personnel resources budget, their legal liability, and compliance regulations. To mitigate these risks, Aztek must enforce policies outlining term of use and regulatory grounds for device permits.In addition to outlining the employees’ IT interaction behavior, Aztek should enforce technical risk controls to identify any policy violations. Only devices shortlisted and approved by

RISK ASSESSMENT 3Aztek management will be permitted to access or store the organization’s sensitive information. These devices will be monitored using the technical risk controls. Thesecontrols include flaggingand preventing unapproved applications from executing and accessing sensitive data, limiting employees’ ability to use modified devices that grant them administrativeprivilege, and the prompt patching of systems (Zahadat et al., 2015). Alternatively, the management of Aztek may provide their employees with approved personal devices while retaining legal ownership of the same. These measures aim to mitigate the various risks that Aztek faces from the adoption of a BYOD policy. However, the management team must determine the effectiveness of these controls in managingtherisks.Pillay et al. (2013) notes that aside from the risks involved, a BYOD policy presents a wide range of benefits to both the organization and its employees. The policy allows the continuity of business activities outside the office in the occurrence of a power outage, natural calamities, or even transport complications. With the flexibility facilitated by a BYOD policy, employees of Aztek can achieve a work-life balance in their professional and personal activities (Mitrovic et al., 2014). Furthermore, skilled employees who cannot relocate to Aztek facilities can still be recruited and perform their respective duties.Employees will be satisfied with their jobs hence improving retention and recruitment of staff. Implementation of the policy will also be beneficial to the environment in terms of transportation and use of paper. With the advent of consumerization, emerging technologies will enable employees of Aztek to innovate and find better and efficient ways to carry out their daily work activities. Aztek will benefit financially as a result of reduced technological hardware costs. This policy will ultimately improve the general productivity, efficiency, and service delivery of Aztek. This risk assessment report aims to analyze the risks emerging from adopting a BYOB policy in Aztek, the relevant control

RISK ASSESSMENT 4measures, and potential benefits. The purpose of this assessment is to assist management and stakeholders in their making process on the implications of a Bring Your Own Device policy to Aztek and how it supports the business structure of the organization.

End of preview

Want to access all the pages? Upload your documents or become a member.

Related Documents
Report on IT Risk Management for Aztek
|17
|4994
|31

Risk Management Report Assignment
|14
|4599
|37

Aztek Risk Management & Assessment
|18
|5082
|30

Aztek: Risk Management & Assessment
|18
|4841
|31

Aztek IT Risk Assessment Case Study September 26 2017 Aztek Financial Services
|17
|5482
|245

Aztek: IT Risk Management Bring Your Own Devices (BYOD)
|20
|5080
|285