this post was submitted on 02 Jan 2024
142 points (95.5% liked)
Technology
59402 readers
2816 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Not OP, but it's because I get to use Linux, a platform that I'm much more productive on. Also, with BYOD I can use a laptop that's actually decent, instead of being forced to use a clunky, underspec'd work-provided laptop. In my case, I use a ThinkPad Z13 Gen1 (Ryzen 69xx, 32GB RAM) that's also pretty decent for casual gaming and has excellent battery life and excellent Linux support.
Luckily we have a pretty good BYOD policy at my current workplace, and my employer even compensates us for not using a work laptop.
I'm not using their software though (as in traditional apps), they're all either web based (such as M365 apps) or via remote desktop (Citrix, for legacy apps). All the web-based apps are filtered with uBlock Origin to get rid of the tracking stuff. The other apps I use for work are all open-source, such as VSCodium, Git, Ansible, Ruby, libvirt etc, so I don't have to worry about them.
All my work stuff runs under a separate user account, with several work-related customisations in place - including a different, boring wallpaper. Once it's home time, I log off, log back into my normal account and bam, it's suddenly turned into a gaming machine, with nothing to do with work.
The best part is, I'm the one fully in control over my machine and don't need to go thru bs bureaucracy to get simple things installed or customised. For instance, back when I was new to the job and wanted to get Dark Reader (harmless browser extension) installed on my work machine, I got rejected with some bs excuse. Switched to BYOD and now I can use all the extensions I want.
Finally, the next time I replace/upgrade my machine, both my personal and work experiences gets a boost. It's a win-win situation.
So yeah, BYOD is awesome and definitely something I'd get excited for.
Sounds like your company never had major issues with cyber attacks. Allowing unmanaged hosts into the environment is a cybersec nightmare, even if just through web apps. Also citrix is a worse experience than any underpowered work laptop.
Sounds like you don't know about the current security philosophy, which is "zero trust". You don't trust anything, not even managed hosts. We operate under the assumption that we are already comprised and that there are already bad actors with access to the network, and therefore the risk is managed accordingly, using modern security controls such as conditional access, RBAC, PIM/JEA, PAWs, AIP etc. Not to mention the use of SIEM and XDR solutions to detect and contain evolving threats. We even have a 24x7 security team who manually monitor all our environments.
Also, our BYOD laptops connect via the Internet to cloud-based services, so it's not like they're connecting to some traditional LAN/VPN/domain etc.
Our zero trust security model isn't something we whipped up out of thin air btw, it was established in consultation with Microsoft and another security agency which specialises in this stuff. Many major organisations around the world now follow a zero trust model, so it's been battle tested. We are a MSP who provide IT services to several organisations - so there are many regulations we need to adhere to, and compulsory external audits are done every year to maintain our certification status. Never had any major issues in any of our audits.
Not really. Have you even used modern versions of Citrix Workspace recently? It works just fine. If you had a poor experience then it's likely that whoever provisioned your VMs underspecced them, or your VM host was underspecced or misconfigured, or you were probably accessing some ancient version of Citrix.
Also, it's not like I'm in Citrix all the time, we only use it when accessing certain traditional apps or isolated environments. Most of our stuff, at least the stuff I mainly work with, is cloud-based.