ENISA released a solid BYOD/Consumeriation of IT guide.

At first I was turned off by phrases in the executive summary like:

Ensure that governance aspects are derived from business processes and protection requirements, and are defined before dealing with technology.

But once you get into it, this is a great starter guide that includes both policy and technical pieces.

Best part: a lot of examples and links to real world projects. Worst parts: the DLP bits don’t reflect what’s available (over-estimates); and some vendor-specific language.

Share: