Full width home advertisement

Welcome Home

Post Page Advertisement [Top]

 How To  Create A Company IOT Policy

From home to office and anywhere in between, Internet of Things (IoT) gadgets have never been more visible. Clocks, light bulbs, batteries, thermostats, cameras, door locks, and more are linked to the internet at an ever-increasing rate, resulting in more and more threats to private data - a problem that your company should fix it quickly.

Consider gadgets such as smart office speakers, which can just as well have eyes and ears that record every conversation in the room; Once IoT devices are broken, they are loopholes in your office.

Here's a quick breakdown of the initial steps to ensure your IoT strategy keeps your office as safe as it is smart.

1. Point Out The Problem First

IoT devices typically make their WiFi connections - and do all their internal calculations - using very small chipsets, many of which are customized for the specific device they are on. Like any suitable computer, the ones mentioned above and more run firmware are software embedded right in the chipset. This firmware could let a light bulb report the imminent failure of your installation team, let a coffee maker tell someone that the preparation is ready. The comfort offered by IoT is undeniable.

2. Fully understand Service Level Agreements (SLAs)

The challenge with IoT devices is that they are rarely manufactured by traditional computer firms such as Cisco, Microsoft, Dell, etc. Instead, they are usually made by companies more acquainted with consumer electronics. And consumer electronics change frequently - sometimes several times a year.

Old electronics were relatively safe to be abandoned. No one was worried about whether or not the previous year's immersion blender was "current" as long as it worked. Now, the abandonment of electronic components equipped with smart computers poses a security threat - a growing concern that these consumer electronics companies are new to this computing level, which means they are more likely to make beginner errors in their firmware code.

3. Consider all IoT Gadgets

Your IoT policy should not only address the electronic components that your organization officially brings into the environment; however, this is a vital first step. You also need to tackle smart devices brought by your workers, such as fitness trackers. If these devices link to WiFi, you should initially have the policy to ban them until you can develop a plan to make sure they don't become a network threat.

4. Think and See Beyond Smart Gadgets

It is not enough to focus on smart devices like the ones mentioned above. Any device capable of operating software could become a problem if that software transmits information about your corporate network. An employee could use their mobile phone to perform an Internet speed test that seems innocent. For example, they could share details about the internal network architecture that you would rather keep private. Time tracking apps could expose details about when your office is occupied and when it's empty, helping attackers who want physical access.


For better or worse, today's devices have sufficient computing power and on-board memory to serve as a propelling point for a primitive botnet or even only to acquire information about your network and pass it on to potential attackers. No matter who brings these gadgets to the office, they pose a threat that your team needs to tackle and enact some "smart policies" around.

No comments:

Post a Comment

Bottom Ad [Post Page]