A framework for enhancing corporate data security in a bring your own device (Byod) environment: a case of government organizations in Kenya.

Abstract

iiABSTRACTInformation and Communication Technology (ICT) has become an integral part of the lives of many people today. In the business scene, ICT has been embedded into the fabric of many organizations. The modern business environment is highly dynamic and is characterized by increased competition and changing employee and customer demands. Emerging technologies such as Cloud Computing, Mobile Computing and Bring Your Own Device (BYOD) have shifted the trajectory of how Information Technology (IT) is consumed. This shift has resulted in a phenomenon referred to as IT Computerization. Proliferation of mobile devices such as smart phones-and table tshasled to a notable shift in the way organizational resources are accessed by employees. Organizations are now adopting BYOD which allows employees to use their personal devices to access sensitive organizational data both within the organization and remotely. The greater capability and flexibility that these cutting-edge devices offer make them popular among many employees especially the younger generation. Adoption of BYOD by organizations presents various benefits such as increased employee productivity, better customer service and increased efficiency. Government agencies in Kenya are increasingly adopting the BYOD concept in line with the Government’s digitization program aimed at increasing efficiency of Government services and as a cost-cutting measure. However, the biggest challenge to successful adoption is the security of sensitive data. BYOD adoption presents data security risks such as loss of data, data leakages, distributed denial of service (DDoS), malware and other vulnerabilities.