A template to share with employees who use their own devices (laptops, etc.), to ensure security requirements are covered
Move this template to a document, folder, or internal wiki, and personalize all [bracket] content for use in your organization.
Overview & Purpose
Employees who use personal laptops are responsible for ensuring the laptop meets [Company] security requirements. The purpose of this agreement is to establish the rules for the use of employee owned devices and technologies that utilize and access [Company] Information Systems.
Agreement
[Company] shall not be held liable for the loss of use or restoring of device, operating system, software applications, tools, scripts, data, etc. Employees shall take the proper precautions (e.g. physical controls over devices, backing up of contacts and files, etc.) to minimize any disruptions.
BYODT devices and technologies shall employ controls that meet the following requirements:
- Password required at startup (power on), Inactivity timeout (15 min), Password change frequency (every 90 days)
- Encryption (FileVault is turned on), Firewall is turned on and malware protection is used.
- Safeguards that ensure only approved users of BYODT devices and technologies can access [Company] Information Resources.
Employee shall not:
- “Root'' or “jailbreak” a BYODT device and technology to free it from pre-defined limitations. This process modifies the system files and can result in an unstable and insecure device.
- Modify BOYDT device and technology hardware and/or software beyond installation of updates provided by the device maker or service provider.
- Disable BYODT device and technology protection systems including passwords, encryption, firewalls, and anti-malware.
|
Laptop Name: |
Windows/macOS: |
||
|
Laptop Type: |
Serial number: |
Employee Full Name:___________________________
Date Signed:________________________
Employee Signature:____________________________