Wednesday 8th October, 2014

CESG Information Security arm of GCHQ, in conjunction with the Centre for the Protection of National Infrastructure (CPNI) are working jointly to transform the UK's cyber security standards and guidance.

As a part of this initiative both organisations have  jointly produced guidance (in draft) for private and public sector organisations considering a 'Bring Your Own Device' (BYOD) approach.

The guidance has advice for staff who want to use their personal IT devices, such as laptops, tablets and smartphones.

CESG says the guidance should be used to inform risk management decisions for BYOD deployments, and is particularly relevant for public sector organisations operating at the OFFICIAL government security classification level.

The guidance applies to any type of BYOD software product running on a personally owned device, including:

• container applications on personally owned smartphones
• bootable USB media on home PCs
• remote desktop or remote application products.