You Risk a Compliance Breach & Leak of Sensitive Information from a Personal Device It’s best to keep all accounts, and especially those of administrators, on company Microsoft accounts that you control and can set permission levels for. If that same user has a cloud account breached that uses that same personal email address, then any other account using the same credentials is at risk. If an employee is an administrator of a company network and has access to your Active Directory, Azure environment, and other administrative areas of your IT infrastructure, allowing them to use a personal account can be a big security liability. The Employee’s Personal Account Could Have Access to Active Directory & Other Sensitive Environments This could be a problem when they’re in a meeting and are asked to share a screen if that wallpaper is less than work appropriate. If an employee is signing into their work PC with a personal Microsoft account, then whatever personal wallpaper they set for their home computer will default. Microsoft accounts save user settings, and this includes desktop wallpapers. Personal Wallpapers May Not Be Work Appropriate Just as an employee doesn’t want their vacation photos to end up being backed up to a shared company folder that the whole company can access. This is bad for both the company and the user because each can have sensitive information end up in places they never intended.įor example, you don’t want a child of an employee that is using their parent’s tablet to be able to access and accidentally delete business documents. With both personal devices and a work device syncing on the same user account, you end up with an unsecured mix of personal and business files. One of the prompts that Microsoft gives during Windows setup is to sync your files with OneDrive so you can access them from other devices (smartphone, tablet, etc.). Personal Files Can Sync and Mix With Business Files If the person is using a business account, you retain control of that account and to the entire Windows environment that’s attached to it. If you’ve allowed an employee to use a personal Microsoft account on their business computer, you could end up losing all that valuable data when they log out and leave the company for good. This could include syncing backup files, browser-stored company passwords, etc. The Windows environment can include several types of files and data that need to be retained after an employee leaves your company. If an Employee Leaves, Their Account Goes With Them What can go wrong if you use a personal Microsoft account on a work computer? Instead, the company should have a business account set up for the user that uses their work credentials, which companies maintain control over. That’s why companies should not allow employees to use a personal Microsoft account when using a business PC. When the line between business and personal gets blurred, it can lead to problems, security risks, and loss of important business data. It’s estimated that once the pandemic has passed, there will still be 25% to 30% of employees working from home multiple days per week. The pandemic and rise of work-from-home teams have made this even more pronounced. When it comes to account logins, especially those with large overarching platforms like Microsoft, the line can sometimes get blurred between personal and business accounts.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |