Slashdot Mirror
Should Employees Buy Their Own Computers?
Local ID10T writes
"Data security vs. productivity. We have all heard the arguments. Most of us use some of our personal equipment for work, but is it a good idea? 'You are at work. Your computer is five years old, runs Windows XP. Your company phone has a tiny screen and doesn't know what the internet is. Idling at home is a snazzy, super-fast laptop, and your own smartphone is barred from accessing work e-mail. There's a reason for that: IT provisioning is an expensive business. Companies can struggle to keep up with the constant rate of technological change. The devices employees have at home and in their pockets are often far more powerful than those provided for them. So what if you let your staff use their own equipment?' Companies such as Microsoft, Intel, Kraft, Citrix, and global law firm SNR Denton seem to think it's a decent idea."
Wouldn't work. The company would always care about its own security.
Having email on your phone, or your computer, gives the company authorization to scan the whole thing including your personal data. That was already ruled in court.
I'd sooner keep my work and life separate, and that includes my gadgets.
"I disapprove of what you say, but I will defend to the death your right to say it." - historian Evelyn Beatrice Hall
So No.
All the projects in your personal computer can be claimed to belong to the company, unless they make agreement in writing. Also, this will create major headache in company's IT and software licensing business.
Do it and you will be happier. So what if your own stuff is more powerful, it is yours and used for your things. Stop acting like a slave and use your own time and devices for yourself.
"I use a Mac because I'm just better than you are."
That's just what I want, to support 30 or 40 different models, brands, or hell even architectures.
To say nothing of when their own personal laptop that they used to surf horse porn last night brings some nasty viruses to work to test the corporate network.
And finally, what happens when I tell them "Sorry, you're going to need to downgrade your os/office suite/creativity suite/whatever to be compatable with the tools we've already paid thousands of dollars for and aren't going to get a new license just for your special snowflake hardware there".
No thanks. I'm happy with standardized hardware. if you keep facebook and yahoo messenger off it (thank god for corporate virus protection that can prevent unauthorized installers/msi files), it'll run nice and quick.
Seriously, a 5 year old pendium D with 2gb of ram running XP will tear the fuck out of office 2003 or 2007. This is work. Do work.
As these things get cheaper and cheaper, maybe so. But then again, maybe not.
For years I have always purchased my own engineering calculators. I'm glad they are my personal property.
A few years ago I purchased my own 3D mouse for CAD work. I am glad I own it, also. They are so cheap that I can't imagine operating CAD software without one, regardless of whether the company would pay for one or not.
Computers may be approaching that cost level.
BUT
The problem is that computers must interface with the corporate network. They are going to want to control what software is on it, security settings, and the like. So you might own the hardware, but you may not have much control over it.
A work that expires before its copyright never enters the public domain and thus enjoys eternal copyright protection.
I use my own computer simply because, pure and simple, it works and I am intimate with it (minus the candles and Barry White). I'm a developer and use a Macbook Pro, but I have been in environments where all that was available was Windows and I have witnessed other developers installing Cygwin, recompiling MySQL to work with the Windows binary, etc etc. Not that this is ineffective, it's just a matter of being time consuming and being a contractor where I'm hired by the job, time is money.
2: Require them to do so.
3: Don't pay them to do so.
4: Profit!
"Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
Several of the examples in the article are not talking about owning your own computer, but using your own computer to access a remote desktop on a VM in a server farm somewhere. I fail to see how this makes the computer "your own" or allows you to customize it to your requirements. Quite the opposite, because VDI images are usually the same snapshot of the same VM with your user profile mounted over a network.
Sounds like business promoting an externality to me - they want all the advantages of a locked down computer in a physically secure location, realized they'll have to shell out for the server farm, the network infrastructure AND a bunch of VDI terminals - and then realized they could get silly mugs to pay for their own terminal on the premise they are "owning their own".
This is a world apart from companies that actually allow users to be in charge of their own computer - and that typically is only practical, and only occurs, where there is a high level of tech savvy. Like Google, who will buy you the computer you ask for and let you install what the hell you like on it.
Kraft? I'd be gobsmacked if they fell into the latter group.
agreed, maintaining any kind of network integrity would be impossible, it's bad enough as it is
"I disapprove of what you say, but I will defend to the death your right to say it." - Evelyn Beatrice Hall, re Voltaire
Good idea: letting your employees bring in their own computers
Bad idea: making your employees bring in their own computers
And I'm not even saying that it would become official company policy. Once a manager sees the savings, the upgrade cycle becomes even more drawn out and employees have to bring in their own stuff by default, just to get anything done.
But if I could charge my company a rental fee for bringing in my own computer ... that might change things a bit. :)
I used my own laptop whenever I could, of-course for a contractor it's not too hard, but they won't let you do it everywhere, there are 'security concerns', and 'network standards', as if there is anything I cannot do to the network once I am on the inside of the company already. It's silly.
You can't handle the truth.
That's a bit on the ridiculous side, especially for large enterprise. An employer needs to secure their network, and that includes all devices connected to the network. ALL OF THEM. If people own the computers then they can rightfully put whatever programs they want on them and then security goes out the window. You may THINK that if you citrix/whatever in there, but employees will eventually use their personal desktop space for critical and sensitive information instead of leaving it on the "secure" network, and you'd have no way to check or enforce this.
In the land of the blind, the one-eyed man is kinky.
They'd want control over my home system including installing corporate sanctioned or purchased software and need to manage assets.
For the technical folks, certainly we'd have better systems. But someone not quite so technical might only have an e-machine or an old Linux box someone set up for them or even an old Windows 98 SE box.
There is also the compatibility issues. I may be using OpenOffice while the other guy is using MS Office 2007 and the next guy is using emacs.
Not to mention issues with internal software working with employee hardware. There's always a big problem when moving to the next upgrade in ensuring existing company apps will work and usually one or two legacy apps that must continue to work.
Yea, I'm not letting the internal systems guys (Windows guys) near my Mac, Sun, or Linux systems.
[John]
Shit better not happen!
Aren't people who use all of their own equipment to do a job called consultants? I'll happily use my equipment but you will pay for the privilege.
"A person is smart. People are dumb, panicky dangerous animals and you know it." - K
It would work as long as the personally-owned device acts as a dumb terminal. Instead of buying a dumb terminal for an employee, tell them to use their own. But having company data sit on a personal computer will never happen for all the reasons already mentioned.
I would use a company computer, but my cell phone is always mine so I can turn the thing off.
For every benefit you receive a tax is levied. - Ralph Waldo Emerson
I assume the article is referring to small businesses who can't buy gear in bulk. I maintained a server for a company like that. One guy used his own laptop on the company network and used the same machine to browse dodgy porn sites from home after hours. That machine was the sole source of virus infections on the LAN and I wish I had been able to ban that machine from the site.
In other news where I work people are buying tablets for web browsing because our IT policies contain no definition for acceptable use of company equipment beyond normal work.
http://michaelsmith.id.au
Note: I have brought in my macbook to work before (as a consultant).
The use of internal standard software (Microsoft Office and Adobe Acrobat Pro in my case) posed a difficult problem since the licensing is hard to track... employee leaves company, but keeps the laptop, employee brings own software, etc.
Finally the issue of company information and security is better managed if the user of the laptop doesn't have root.
Make sure everyone's vote counts: Verified Voting
It's interesting to see the article focus so much on Citrix, when VMware currently has the most market share in VDI.
Amen.
Or, if I really have to manage your private computer, you need to hand all your user access rights to me, including ALL administrative privileges. And agree for standard set of services preconfigured to comply with company regulations.
Regards,
Ruemere
If someone wants to steal something, and you are trying to prevent it, short of a body cavity search everyday, you've already lost the game. You can steal a code base and drawings for virtually any product by simply copying it onto a USB flash drive, and walking out. Often your cell phone will suffice.
If you are trying to prevent viruses and stuff, the same techniques apply for company owned laptops versus employee owned. If they can take it home, it can get infected. You might ameliorate things by having a forced virus checker installation, but a voluntary one will generally work just as well.
In the end, the only thing you are can't do is take the machine away, but this is such a rare event that it's almost not worth considering.
All the technology in the world won't hide your lack of vision, talent, or understanding.
Either your I.T. department starts maintaining your employees own computers, or you lose time and money when the employee can't work. Even if you hold them responsible, you are still losing work time.
This is just a terrible idea.
People do all sorts of things to their own computers that they wouldn't/shouldn't do to a work computer, all of which brings in problems. Combine this with the fact that they now have all of these time wasters on their work computer and you are throwing money out the window.
How about letting users add more memory, another hard drive etc?
Seems more reasonable.
Tsukasa: All I really want, is to be left alone...
You load sixteen tons, what do you get?
Another day older and deeper in debt.
Saint Peter, don't you call me, 'cause I can't go;
I owe my soul to the company store.
On the one hand, everyone would be more willing to take care of their own machine that they bought and paid for.
On the other hand, security would be disastrous.
This is just evidence of the changing approach to IT. If you assume nothing on the network is secure and present all of the sensitive stuff using server-side resources (think Citrix XenApp, VMware View, etc) then it doesn't matter as much. Set a policy that requires installation of such-and-such antivirus, OS, etc and let it go. Stop caring if the computer hits less savory websites and just monitor usage of the business owned pipes. It won't work for every scenario but it can in many.
What can I say. I think this is a terrible idea.
I don't know about the US, but here in Europe the employer provides everything the the employee needs. A programmer with 3-5 years of university education really shouldn't spend their time trying to set up a secure backup solution. That should be the job of someone who doesn't know how to build an operating system from the ground up, or how to write an ip-stack or plan huge complex software solutions for managing more information a second than any human could read in a lifetime.
Seriously. Specialize. Someone should be great at setting up and maintaining computers, other should be great at programming assembly. Being great at something really does require continues dedication.
Any minute now they will want cops to buy their own guns. Teachers to buy their own books. Train operators buy their own trains :P and nuclear engineers to bring their own uranium to work.
Say NO to unpaid Internships!
My machines belong to me. The stuff on them is mine, not the company's. And I don't want any confusion about that. I have VPN access from home to the corporate LAN. We also have a Windows "work at home" server which is accessible via MS's mstsc. I use that, not the VPN/LAN. I use Linux at home and rdesktop to access that server. Once on that server, I use mstsc to access my work desktop. Why? it makes my home machine safer. My home machine is more of a "dumb terminal" which cannot be infected by or infect anything at work. Or at least it is significantly less likely. I'm not aware of any virus which can spread over an mstsc link. Which means little, given my ignorance. My home system is behind a firewall/router, so hopefully it is too much trouble to crack. I don't need "impossible", just need "harder than average" to discourage most. Running Linux and no Windows also helps.
So what happens if your company happens to be Enron and your computer gets supoened by the court? Your personal stuff gets hauled away at the same time? I don't think they'll untangle your business life from your work life when there's only one computer for them to investigate.
The other issue I forsee is what happens with wiping the drive? Maybe you quit the company, the corporate IT system issues a wipe to your iphone, and guess what, your personal data's gone too.
It's not always a good idea to blend your business life with your work life, especially when you don't know whether the corporate security policies trump your personal data.
I'm allowed to use my own peripherals but if I were wanting to use my own tower I would have to essentially donate it. For things to work here the IT has to have complete access to my computer, if it were my property it would be a bit awkward. Most of the workers here don't even have admin access because of they get a virus etc... it could leak private info. Not give someone administrative privileges on their own hardware? see how that goes over.
There is no way I am going to let work enforce their Group Policy settings on my personal hardware. Or slow down my computer with mandatory Symantec junk, or all the crapware that comes with National Instruments software. Or wipe my machine when some idiot emails sensitive information.
I don't mind using RemoteDesktop from home every now and then if it saves me from coming into work, but that is about the limit.
You know the office storage basement? ....Well, there's a computer already setup there, and it would be a shame if we had to occupy that computer, because of course, it's running Windows ME and it doesn't even have solitaire or access to HSI. In fact, it's connected to a phone jack. You don't HAVE to use your computer, BUT I'm sure you can see where I'm getting at here Milton.
I see everyone on here commenting about how this would be a nightmare for IT to manage from a security standpoint. I don't really think so. The only area that would suffer is hardware-related support since you're now dealing with a bunch of different computers from all different vendors. So you wouldn't be able to take your broken computer in and get a quick replacement part from your IT folks on site, and that might be OK with a lot of folks, especially at tech-oriented companies.
I work at a large enterprise, and we can install whatever we want on our work laptop to begin with. So me being aloud to install whatever I want is already a "security issue". It's probably like that at a lot of larger tech-based enterprises. The difference is that my IT computer is also running a lot of IT-enforced software that's making sure I keep my system up-to-date and haven't installed anything "bad".
If you don't care about being able to provide IT support for users hardware, you could have employees keep their own computers and just install all the IT-required OS, the BS apps that monitor your computer and push out software updates, the corporate anti-virus, etc. If the computer doesn't meet the IT software standards, then deny it access to the network. There's security solutions out there that can check the integrity of your computer and deny network access if its not up to snuff (google Network Access Control).
You're right that there is no way to guarantee security without extreme measures (see, the DOD) Instead, it's about support volume (and the related costs). If you get one or two incidents a year involving a broken computer (with security implications) with a "closed" system that takes reasonable security measures, it's a lot more cost effective than fighting 1 or 2 incidents a *day* as users find more effective ways to break their own computers. Also, the threat profile (i.e. the likelihood that the breakin resulted in a measurable loss for the company because the attacker was able to make off with valuable material) is a lot smaller.
Sure, attempting 100% security is going to cost 100% of your resources and still not going to be 100% effective. However, once the "cost" slider leaves 100%, how far down do you want it to take the "Effective" slider?
When I need a new laptop I send them the specs of exactly what I want.. .then they buy it and ship it to me. I then install the OS from scratch and put whatever I want on it (including some corporate softwarre we have licenses for like MS Office and such)
The joys of working from home :-)
It takes a big man to cry, but it takes a bigger man to laugh at that man.
Pretty much all the companies mentioned are using virtual desktops. That is, the physical device is essentially a glorified terminal for the purposes of work. The connection to the "real" corporate machine is an encrypted session to a central server.
So they don't care about viruses because there is nothing directly on the unencrypted network. They don't care about support because anyone with nonstandard hardware is responsible for their own support, and the corporate support only handles the contents of the virtual machine.
So they don't care what you're running in terms of a physical device as long as you can connect to the central server to do the "real work".
The first step is semi-rational, the next step is coercion -- outsourcing company costs onto payroll. Why not just force IT to take employee recommendations on what IT should have bought in instance one?
``Tension, apprehension & dissension have begun!'' - Duffy Wyg&, in Alfred Bester's _The Demolished Man_
Not ever.
Besides, in most cases a 5 year old computer is fine.
If ti compiles slow? let your supervisor know how much longer it takes you, then go about your job. If they want to pay you for the extra 10 minutes of compiling time, then so be it.
You do NOT need the at least, greatest all the time. N matter how much we want it and come up with reason we think we need one.
Of course, you also can't claim separation from work and home, so any ideas you write up, or code may become the companies.
To sum up:
No, nada, uh-uh, no way jose, nyet, nein, non, forget it, sorry charlie, bite me, ain't no way in hell.
The Kruger Dunning explains most post on
All the real work happens on a virtual machine running on a central server farm. Everyone logs in over the network and gets a locked-down uniform corporate virtual machine.
It doesn't matter what physical device the employees use to connect to the server, since from the point of view of the employer nothing important happens on the employee's device--it's just a terminal.
For years, when I have changed jobs, on day one I remove the companies hard drive and replace it with my own. I load the machine the way I want with what I want. When it is time to move on, I put their original drive back in the laptop and hand it back. I've never had anyone complain.
IT costs vs human costs have gone down, down, down and this trend is likely to continue. The tools to manage a large group of machines through Group Policy or other means are becoming more and more advanced with minimal staff supporting a huge number of computers. Of course you could have your employees bring in their own computers and use tons of company time - or IT time - to meddle with their computers, because that's work now right? This goes against all sanity of why you have support departments in corporations, it's not because you couldn't have them do the janitor and cleaning duties on rotation. It's because you want them to do their job, which they're hopefully good at and that you're paying way too much for them to go around playing jack-of-all-trades. And I swear in practice some of the smarter people would become the "go-to" guys which will clog up their time, when they should have been busy making the company money. But please tell me companies that are considering this so I can short them.
Live today, because you never know what tomorrow brings
The first thing I did when I took over as the Network Administrator at my workplace was put an end to personal computers in the office. The company makes enough money that if we can't afford to give an employee a usable workstation, then we shouldn't be hiring anyone. If you want to bring in a new keyboard or mouse, that's fine with me, but anything else isn't happening When I need to work on a computer or have to wipe it due to a virus or whatever, I don't want to have to waste my time backing up music collections or pictures or crap like that. The first thing I tell a new employee is that the computer is the property of the company, so if you want to load personal stuff on there its at your own risk.
Your company needs to seriously rebalance its internal strucutres if the productivity of a >$50k salaray employee is being impacted by the failure to make a yearly $2k investment in hardware. The simple numbers say a 5% increase in employee productivity justifies the expense.
If the problem is staff funding vs IT funding the managers need to escalate it. Save on the staff funding by doing the IT funding. If the company can't do the math and do the rebalancing then it is a bad corporate structure.
The company cares about the bottom line. If your productivity is noticeably impaired, make a business case to your boss for a faster machine. A thousand bucks gets you a pretty decent machine these days.
This story is about the opposite. Using employee purchased equipment to be used for work.
It is, but it creates a gray area that I would rather not deal with. If the company wants to stay competitive, then it should be investing in its own hardware and keeping it up to date. If they want me to buy my own equipment for work, then they better make me a voting investor and sign a contract restricting them access to the contents of the PC, otherwise I will look for another job.
Jumpstart the tartan drive.
It seems like this practice would be unfair, undesirable and impractical in many - if not the vast majority of situations. Personally, I work in a very small startup company and everyone here has a blurred separation between work and personal life. To be stingy with my time or personal resources would be to guarantee failure, and I expect (and receive) the same attitude from my constituents.
Of course we are a software company and we aren't plagued with IT support issues due to our relatively competent internal knowledge. In any case, it is very one-sided and cynical to suggest that there is never a good reason to leverage an employee's personal property (at their own discretion, of course) to mitigate operational costs.
I have never worked somewhere that officially supported Apple products on their network. And yet, I've always known a few engineers that brought in their Macbooks and got them working. Same goes for non-blackberry smart phones. You can't expect IT to support every piece of hardware and OS on the planet, but you can expect to get some help with server names etc. if you want to do the grunt work on your own hardware.
One of the more interesting ideas I've had in a while was that if I was ever hired by someone who wanted me to use a windows laptop. I would sell it and buy a mac. Just because I've spent far too much time fighting windows to ever want to see it again.
Like at the university I go to, it takes 2-3 minutes to log onto a new windows machine, while you can log into a linux machine in a matter of seconds
Say NO to unpaid Internships!
Until director-level folks, CEO, CFO, other executives, and board members start demanding to use their iPads for things like e-mail and calendars.
About the only defense IT has is to say, "Fine, to do that we have to do a forklift upgrade of our mail/calendar infrastructure -- $xxx,xxx."
But when the CEO and CFO say, "do it," you do it.
Oh, and don't start on those weirdo creative types in marketing and documentation that bring in their own Macs anyway...
Some businesses, rather than going neurotic about access controls are instead asking, how do we enable employees to use the best tools for their jobs? Yeah, some can get away with XP on a Pentium box. Others want Linux and command lines. Others go for Macs. An iPad can be nearly deal for an exec that lives by e-mail and calendar and doesn't do a lot of content creation.
Figure out how to give people access to the tools that work -- for them
And as someone who used to bring his home laptop to work (it was either that or be without a computer for half the day - a whole other WTF story), my Rule 1 was: my computer, my software. You want anti-virus on there? OK, that's reasonable - but I control the settings.
When we got proper IT staff, the first thing they did was get me a work laptop (for the obvious reasons you mention above). And I was OK with that. But I definitely burned out my machine faster than it normally would have (considering it was on and running 16 hours a day for two and a half years, not surprising).
I think the "bring your own stuff to work" idea is a non-starter. Peripherals on your computer (mice, etc)? Sure. Smartphones? Maaybe. But actual laptop/desktops? I doubt it.
Anyone with any sort of managed IT infrastructure should shit a brick at this.
Sure, it SOUNDS nice, until the first time you have a non-compliant user. How do you enforce your security policies on hardware that your company does not own?
What's more, you now are taking up responsibility for a massive heterogeneous environment. While EQUIPMENT costs may go down, support costs for a huge variety of systems, operating systems, and compatibility issues with various OEM/VAR add-ins would shoot through the roof.
Office Drone's Schlibovitz 9000C has one of the company's important apps continually crashing. No logs. No error messages. Just BOOM. Back to desktop.
Why? Dunno.
Is it hardware issues? Dunno.
Is it software issues? Dunno.
Can we reproduce it on an identical machine? No.
Why not? No identical machines.
Can we reproduce it on another machine? No.
Why not? Other systems, like the HappyPuppy 3407 run it just fine with no errors. As does the HugeHonkinHeatsink 2600.
If it's a software issue, what do you do? Tell the owner they have to buy another computer or different software/OS? Good luck!
If it's a hardware issue, who foots the bill for replacing the hardware?
Who foots the bill for discovering what the hell the issue actually is in the first place?
How do you get backups from someone's personal machine that may get shut down every night?
How would you retain any moderately sane IT management personnel when you're asking them to essentially asspull the entire environment and "wing it" when problems crop up. You certainly couldn't pay ME enough to oversee that kind of mess.
Chas - The one, the only.
THANK GOD!!!
I've pretty much been on all sides of this issue, from being the under-resourced BOFH who wants to enforce standards, to being the newbie stuck with a six-year-old junk computer, to seeing the incompetent corporate purchasing of brand new systems that are inefficient, incompatible, or don't last two months in operation.
I say go for it.
Give employees a choice: 100% on your own, or 100% supported. Negotiate access to shared resources through open, standard protocols. Segregate in-house resources onto their own network; firewall off and monitor everything else. Make sure IT has the resources necessary to do the job. Put the people who buy their own at the end of the line for support requests.
It can definitely pay off and end up being win-win for everyone.
"I assumed blithely that there were no elves out there in the darkness"
Are you suggesting that companies should gift them home computers instead?
O that's right, you want to cut costs by mandating employees buy tools needed to do their own jobs. Sounds like a plan, pay everyone like a consultant accordingly. Woops, there goes your savings.
Now, if we're talking about SOLELY running through Terminal Services, Citrix, Go-Global or some other app publishing/desktop sharing medium that changes things a bit.
But somehow I double many situations are quite this clean-cut.
Chas - The one, the only.
THANK GOD!!!
You are opening up your home machine to corporate exposure.
You are now completely responsible for any an all data loss or theft due to hardware failure or viruses.
You are essentially renting them time on an asset that you paid money for, for free.
And that doesn't even touch on what kind of a messy situation you could run into if you were fired, or the company comes under investigation for something, or has an audit, or you end up suing them yourself.
Just don't do it. Infrastructure is cheap compared to the brain you're paying to sit in front of the computer. Make them buy you a new system or live with your reduced productivity.
The only stuff that goes on our company's network is company kit. Bought, maintained, documented, tested and secured according to company standards and used as the company sees fit. You want to put your unknown, incompatible, unsecure toys on it - go start your own company.
politicians are like babies' nappies: they should both be changed regularly and for the same reasons
You know what's really expensive? Office furniture. Maybe employees could buy their own..
In all seriousness, if the cost of business is too high for you then you're doing it wrong. Perhaps business 101 is in order where you learn to pass the cost of doing business to the customer for a price. You know, that whole thing called "business".
Tiger Blooded Bi-Winning Machine
1) Ownership is critical. If an employee quits, how do you deal with the issue of company data and IP on someone's personal desktop/laptop? "Sorry, Bob, you're going to have to leave that here so we can securely wipe the hard drive. Including all of your family photos, music, and that novel you've been writing." Yeah, good luck with that. Same situation if you fire them.
2) Anything outside the tested/proven hardware and software configuration is a PITA. I've got 4 flavors of workstation. If there's a problem with a workstation, I can replace it in about an hour. And that's my "Scotty" estimate which assumes something more important (read: A VP with a printing problem) will interrupt me at least twice during the setup. Blast an image, apply updates, configure their mail, deploy. If I have to do a custom load of XP or Win7 (or freakin' Vista), it'll be half a day. Assuming I can get the OEM install discs for the OS. And they'll probably be pissed that 10 years' of un-backed-up family photos just got wiped out. Nevermind having to deal with operating systems that can't connect to a domain or aren't compatible with one of our software packages.
3) Who's responsible if it breaks? I sure didn't authorize a $4000 six-core, RAID-0 SSD, 16 gig, SLI-video beast for QA Intern #3 but QA Intern #2 just spilled his ultra-venti quintuple-shot skim mocha late on it and all the smoke leaked out. "Sorry, kid, sucks to be you. Help yourself to a DECWriter."
I could keep going forever but any one of those is a dealbreaker. Three and four year old workstations do the job just fine. Hell, the vast majority of office drones are doing the same things with their computers now that they were doing 10 years ago. Email, word processing, spreadsheets, and surfing the web. Any P4 or better with a gig of RAM will get the job done. The few people in my company who actually need more powerful machines already have them. I've been rockin' the same P4 at work since 2006 and it does everything I need. Heck, I'm running Windows 7 and Office 2010 on it for testing and evaluation and I just opened an excel document from a cold start (excel hadn't been run once this boot) in 5 seconds. A warm start with the same document took less than 3 seconds. No SSD, no quad-core CPU. Just an old single-core P4 and an 80 gig hard drive set to "quiet".
My home computer runs Linux, and many of us run Linux or OSX, particularly in technology companies. Our computers aren't malware and virus infected. Using them is not going to hurt "your network". The fact that you call it "your network" alone should give us pause.
Corporate asset managers like you are the very reason why large companies are painful to be an innovative developer at. You are the reason why startups with 10 developers often have an advantage over gigantic companies with thousands of developers. You think that your safety blanket of Windows XP with a mountain of scanner software churning cycles, a ten year old IE 6 browser, and policies that neuter the OS significantly to disallow the computer to be used by anyone for anything, is the ONLY WAY. Running an alternative desktop that starts out secure is unacceptable because you read a CIO Mag article 5 years ago that told you the TCO is higher.
Sorry to go on a tirade, but it's just very frustrating.
I'm not sure if anyone has mentioned this; but there can be issues if the work you do involves information that could be subject to discovery phase in litigation or other legal matter.
FYI IANAL... I could be badly mistaken on this. But...
Depending on the controls being actively enforced, and perhaps regardless of them, documents can be copied from Citrix (et al) environments to the personal computer; this is often times more convenient, especially if you're not near a network. If a subpoena is issued for all devices where the work took place, it is conceivable that your personal equipment would be subject to that discovery effort. I think this would be more an issue in regulatory investigations, and even occasional work could put you in that bucket.
Anyway, I keep my devices strictly separate (laptops, phones, etc.)... and I do have the option of using personal gear (and would prefer it)... but want to avoid those issues.
Cheers,
SCB
...not because it's just a bad idea to provide cutting edge equipment to do the job. It's a bad idea because of one thing...legal liability.
Right now, companies all over the world, are battling governments, civil rights unions, employee unions, activist organizations and so one over the idea of personal privacy. Personal privacy doesn't really exist but we like to make up the illusion that it does by saying something is mine and you can't have it or tell me what to do with it. It's mine, mine, mine, all mine, keep your grubby hands off it you evil, faceless corporation!
That's all well and good until it comes time to clean up a mess like a data spill or a hostile attack on a system. See, corporations have a much easier time enforcing computing policies when they provide the equipment, network and other computing equipment for their employees. When they own the equipment, there is no longer a question of "civil rights" because of the idea of private property. Just like you, at home, reserve the right to limit public access to your home and all the things you have in and around it in any way you see fit, so do the corporations. Democracy stops at the front door in the interests of the more bureaucratic but often more efficient hierarchy of a private, tiered dictatorship.
When the company owns the equipment, if they allow you any level of personal use or personal privacy beyond the minimal amounts that most labor laws require, it's by courtesy only. They can tell you what you can and can't do with their private equipment. That extends to whatever security, anti-virus, anti-malware and proxy level they choose to instantiate in their systems to protect company assets and property. Sure you can lobby against it and whine like a petulant child but in reality, you don't have much of a foot to stand on.
If you allow workers to use their own machines, you open a gigantic security hole as well a massive logistical problem in maintaining and securing your networks and shared resources. How do you ensure that users are keeping their systems up to date with patches and updates? How do you ensure they are using a compatible version of an OS? How do you even ensure they are using a LEGAL copy and not a pirated version rife with back doors and other little nasties? What do you do about limiting network access? You could use a VPN system with something like RSA's SecureID system but then you are talking massive amounts of system overhead with poor network performance.
There is a host of problems associated with the idea that I could list for hours. Those are all technical. They do not even address the human factor. Even as it is now, when one employee gets a system upgrade while another languishes away in obsolete-system-land, it starts petulant in-fighting and envious behavior until the other employees are satiated. That only lasts until the next round of upgrades. What happens when Joe is still stuck with, say, a Dell C600 'cause that's all he can afford after paying Little Joey's college tuition and Ned comes in with a brand new MacBook Air? The jealousy will still be there. It will probably foster dissent about Ned's level of compensation vs. his perceived contribution as well. That bring a whole new mess of problems for HR. You're no longer managing people as much as you are babysitting them.
Maybe there is a bottom line benefit to the idea. However, people have an amazing affect on a bottom line in ways that most management seems to have an inability to comprehend. I'll leave it all at that because I could easily go on for pages about this. Especially since I'm one of those system security weenies that would have to deal with the aftermath of implementing such an idea. The words nuclear holocaust come to mind to describe what the networks would look like afterwords.
apparently someone forgot the rule of i.t. : "if it aint broke, dont fix it"
Read radical news here
Yeah, I didn't RTFA, but my equipment at home is slower and cheaper than what I have at work. I don't own a smartphone for work or personal use. I don't have a quad-core box at home or a 30 inch screen, but I do at work.
So no, I don't think I want to use my personal equipment for business use, since it's not adequate to the task.
Terrorist, bomb, al Qaeda, nuclear, yellowcake, kill, assassinate. Carnivore is dead... long live Echelon.
Even then, it's a huge security issue. Unless literally every piece of core infrastructure is firewalled off so it's inaccessible except through the virtual infrastructure (which I can't see happening), you'd have people bringing in all sorts of malware.
Supporting standardized EQ in a business takes enough co-ordination and time and effort...
throwing in your random techno-gadgetry and virus/spyware laden personal laptop/desktop and I quit...
"Just Smile and Nod." --Huck
But letting people (developers especially) pick things like a good mouse and keyboard would be a good thing IMO.
I wouldn't mind doing this if the company would provide a virtual machine image which I can operate within so I do not need to pollute my actual PC with all the security software shiat and encrypted drives I need that the company uses. Slap the VM on an external/removable like I do at work already for test environments and you're all set.
If I can afford better gear than my employer I need to get a better employer.
To IT employees and allow them to bring their own equipment in, because ostensibly, they understand security and know how to secure their machines. I am allowed to do this at my job. The alternative is an outdated, outmoded, Celeron D with 1GB of RAM.
I would like to second this opinion. I have a work provided box running Ubuntu 10.04 and personal imac. I am not bring in viruses or ruining the corporate network. Leave me alone and let me work. I don't want to run the work XP image with McAfee and 1 GB RAM. Its worthless. I hope my next job also affords me some flexibility.
One of my previous employers (large insurance company) would have completely flipped if I were to even suggest using my own equipment for their work. I was once called into the Director's office for simply changing the background on my workstation.
My current employer (aviation co.) actively endorses the idea. We just don't have the budget or staff (we recently dumped our in-house IT and it's primarily outsourced 9 to 5--even though we're a 24-hour operation--what a f****n' headache!--got a problem at 2am, call back at 9am to get it fixed). They also seem indifferent about the ramifications of all of us mixing equipment. For example, one of the first changes they made was to foist a web application on us that required the use of IE (think ActiveX). We complained, and complained until they (reluctantly) fixed it to work with Chromafarifox.
More specifically, Virus doesn't make a lot of sense to pluralize as Latin since it's not a noun representing a single discreet thing.
http://www.archives.nd.edu/cgi-bin/lookup.pl?stem=virus&ending=
Virus mean venom or poison or slime. Just as saying "jellos" or "waters" doesn't make a lot of sense (though there are some situations when we can), pluralizing virus in Latin would be weird. So we borrow it first, make it a complete English word, then we use English rules to pluralize it.
And fucking prima dona's like yourself are the nightmare of a well run network. (waaah, I can't get samba to authenticate against AD) Get over it. Life does not revolve around you just because you're `special` and run linux. The computer is just a tool. Your personal preference for the fancy or non-standard tool doesn't make sense if the standard industrial one does the job just fine.
In a corporate environment there are large issues to worry about than just you. Corporate security is important simply because one good screw up can cost the company more profits than you'll ever be able to generate. Small startups usually are the target of corporate espionage or have as many disgruntled employees to worry about.
Equipment being a high cost to the company is a a bad sign to see in the argument for allowing workers to bring their own computers in.
In an intelligent company, management should understand that the salary of the worker dwarfs the cost of the machine. A slow machine wastes the salary. To not spend the money needed to get every ounce of productivity out of a worker is to throw away money.
This would be a gray area if computers were $6000. However, they're not. If a tech worker has a clunker computer and the company's not willing to buy a $1k computer, then there's something wrong at the company, and brain damage in one area usually means brain damage in a bunch.
Therefore, if you find that you need to bring in your own hardware, look for another job.
http://www.redhat.com/virtualization/rhev/desktop/spice/
http://www.spicespace.org/
it's pretty aggressive. just found out about it a couple months ago. QEMU based. they're doing some cool stuff with virtual devices; qxl is their accelerated graphics driver for Linux & Windows, and is probably gonna end up taking over for NX client now that they're closed source. and yes, i am aware there is a difference between a remote desktop and vm.
interested to see how RHEL manufacture disk images for the individual clients; needing a dedicated disk image for each OS is pretty bogus, but fairly common practice.
The title talks about employees using their higher performance machines rather than their work slowpokes.
The story talks about companies changing from using PCs/workstations as the computing devices to using servers with virtual machines and remote access. The actual execution of code is done on the server, so the performance of the remote "terminal" mostly irrelevant. There are benefits to the centralized approach (mainframes, anyone?), but higher performance by using personal speed demon machines isn't one of them.
- The Sigless Wonder
My work computer is 6 years old, runs XP sp3 and ya know what?
it runs outlook and excel just fine, and after we scraped a bunch of these machines for the suits desktops, that 2GB of pc133 ram are humming along quite satisfactory on this old 1.7GHz P4 even with the 2x AGP card
Comment removed based on user account deletion
What sane IT department would put up with that? I certainly wouldn't. Security, legal exposure, downtime, compatibility... not a good deal. Conversely, the above rules are MY terms; I am extremely autocratic with my equipment. If the company wants any of the above privileges, we'll talk cash. I'm not going to be a welfare department for my employer. If they're so cheap that they can't afford to buy a new computer every few years when the old one is no longer useful, the paychecks will be bouncing too; companies like that aren't employers, they're bankruptcy cases that haven't filed yet.
Really, it's a lose-lose situation.
Everybody gets what the majority deserves.
Never mind its hidden in a disused lavatory with a sign on the door saying "Beware of The Leopard".
For several reasons that come to mind:
Why should i pay to work? Are they going to fix my PC when it breaks? Upgrade it? Compensate me for depreciation? They going to monitor and control what i do with it?
---- Booth was a patriot ----
People have different tastes. This way I can have a macbook, you can have a vaio, the guy around the corner can have a gaming laptop, and if you want to save money you use a repurposed old desktop...and they all connect to the server for doing "real work". Then those with laptops can take them home and watch movies, play games, surf the web, or whatever else.
There is NOTHING hard about keeping up with technology in a workforce. At the low end are drafters who make around 35,000$ per year in salary alone. A brand power desktop every year would cost the company only 2,000$, thats less than 6% of the salary cost (probably under 3% of the actual total overhead cost) of the employee. If an average engineer makes 75,000$ that translates to 2.7% of his pay. These figures are absolutely inconsequential. The problem lies entirely with management that believes they are "saving" a little money by making a 75,000$ engineer work on a 15" screen on a computer that's 5 years old.
I didn't say I could only be innovative on OSX/Linux. I can't be *as* innovative on a machine that is completely neutered, and unresponsive. Unfortunately, this is always the case with Windows in a corporate environment due to the policies and software that is put on it to keep it safe.
Safety for Windows in a corporate environment comes at a cost that is so high as to greatly diminish the value of the computer.
Somehow Google manages...
Don't thank God, thank a doctor!
I use my own computer simply because, pure and simple, it works and i am intimate with it
I'm that way also, I have my own computer (also a MBP) and a ton of gear in my bag. (I have to switch shoulders periodically when walking a distance, I don't pack light) And for the same reasons, that laptop is my main computer, there's not a big primary desktop at home, and I have my laptop set up the way I need it for optimal use.
Last job I worked, I was told they wanted me to have a "company machine" instead of using my own. He cited insurance reasons or something, was a bit vague, but I humored him. (CEO) Asked me to inventory what personal property I used at work. I told him I'd start with my laptop bag. it rang in at somewhere right around $4500 for the hardware and software. (as I said, I don't pack light, I buy quality gear, and I have good software) After emailing that to him, he never brought up the subject ever again.
Before that, way back in '99 or so, I had a powerbook g3 I took to work, and had a boss that flat out didn't want me bringing in my laptop. Back then I was a back room overnight data processor. When I walked in the building, I was carrying the fastest computer under the roof, with 4x more storage than the servers, many times the memory, the only usable scsi interface short of the servers themselves, the only firewire port in the building, the only machine that could burn CDs. (yes, in 1999, a laptop with a CD-R drive, god I loved that machine)
Anyway, I stopped bringing it in for about a week. Then we had a problem with one of the hard drives in the server. Couldn't work on it without downing the server since it had the only scsi interface. A day later the ISDN modem had issues and needed some adjustment and I had the only serial interface it liked. So he told me to bring my laptop back in. And never said a thing about it again.
Lets face it, sometimes an employee has a bit of personal hardware they use at work that makes their job easier, more effective, or sometimes just makes it possible. And some of that time, the company is unwilling or unable to replace it with company property. For me, a lot of it is simply convenience. I could have gotten by without my MBP, but I would have been a lot less effective, much slower to resolve many problems I ran into throughout the day as a support person, and generally would have been a lot less happy with my job. So that's why I didn't mind quite so much bringing in my own personal property. It makes my job more pleasant. And that's an OK tradeoff for me for the company to get the use of my computer rather than have to buy it for me. But so far nothing bad has come of it for me personally. Nobody's attempted to mess with my computer or demand access or monitoring or anything on it. If they tried, I'd just stop bringing it to work, and let the fallout rain down until they gave in or bought me something, as I did with the G3. Most companies are too cheap for that though and quickly give in.
At my current job, I always have my computer with me, and use it frequently. I tried using a company computer, but was far less effective with it, so they leave me alone.
I work for the Department of Redundancy Department.
Is the company going to own the town as well as force you to purchase from the company store?
I hate to come off as ridiculous but this is eerily close to the situation behind Ernie Ford's song.
My home computer is still a P4 3.2G w/1GB ram and a single monitor. It's getting a little sluggish for my needs these days, but it does what I need it to do.
At work I have a C2D E8400 w/4GB ram, RAID, dual monitors, etc. It's 3 years old, and still sufficient for the work I do, but I can occasionally bog it down with "normal" workloads (i.e. not intentially trying to kill it with a 20 threaded compile or something). I"ll probably be betting a new quad core tons of ram system in 2011 some time.
So no thanks, I'd rather not use my personal device for work :)
Then again, I'm in IT at a higher level, so I still have to support my own system either way.
waaah, I can't get samba to authenticate against AD
Erm, actually? I can. And if I can't, I'm sure as hell not going to bother IT about it.
Generally, we make your job easier if you've got sane policies to begin with. We're not the ones who will be calling you up and asking you for help logging in because we left capslock on. We're not going to be begging you to get rid of the porn popups so we can give a presentation. We're not going to be whining that our machine is too slow and that you have to update it.
Your personal preference for the fancy or non-standard tool doesn't make sense if the standard industrial one does the job just fine.
It does if I save you licenses and become several times more productive. I don't think I work cheaply enough that it's worth making me several times less productive, or spending several times my salary to hire enough people to make up the difference, just so you can force me into your mold.
In a corporate environment there are large issues to worry about than just you.
I'd think spelling would be a larger issue, but regardless...
You would think the largest issue at a technology company is keeping the developers developing. That's the whole point of the company -- for the developers to develop something, and for the salespeople to sell it.
Actually, your attitude smells much less like "I'm just following policy" and more like "I'm a sad little king of a sad little hill, and to make me feel better about myself, I'm going to exert whatever amount of control I possibly can over everyone else. That's right, bitch, you run XP here because I'm the alpha male!" Or alpha female.
Don't thank God, thank a doctor!
As a design engineer I marvel was the crap Dell sold our IT department as an engineering workstation. My beast has Xeon family processors, which jack up the price, but are no faster than an i7 processor. Meanwhile the thing has a terrible video card that chokes on complex 3D models more than my home machine. So Dell sold our IT department on standardizing on a machine that twice as much as my home machine, but has sucky graphics and is no faster for simulations.
So yes, for the 5-10% of folks who really use their machines, and know how to use them, I would love the option of getting a budget to use as I see fit for my computer needs. I do see that for all the clerical drones that it would be more hassle than needed for all involved.
I work for a university and as a means to leave as little a personal financial footprint (we're in a budget crisis, people...), I decline computer upgrades because they're never actually "upgrades", they're "replacements". The departments aren't allowed to spend money on RAM or a video card to increase performance because they'd have to require official tech support (out university tech support) to install it (so tech support can be blamed if something goes wrong). That's just too much hassle in the eyes of the bureaucracy.
So I sneak in my own old, hand-me-down RAM, video cards, and even speakers. No one that cares to keep track of the hardware knows and money is saved. I'd say there's about 6 GB of RAM in computers at this university and prob 3 video cards in offices all over the place that were once my property.
I work for a company because of my specific abilities and skills. I am not in the hardware rental business, and I sure as hell am not in the "use my hardware for free" business.
It is considered standard to compensate a delivery driver who uses his own vehicle for the use and mileage put on that vehicle.
In some cases, my computer hardware might have cost more than a decent vehicle. So in the same way, if a company wants me to use my own hardware for work, they had better be prepared to pay me more in compensation. My hardware wasn't "free" to me, and the company should not expect to get it for free either.
The equipment my employer provides is "good enough" that I can't justify them paying for an upgrade (it does the job), but sometimes "too slow" for me to use comfortably.. I've been more than happy to provide my own computer from home during my employment.
I like my own monitor and keyboard better than theirs too. It would be unfair of me to request a better keyboard just because theirs doesn't click loudly enough.
I've been more than happy to assume the responsibility of maintainance and upgrade costs myself, if they ever arise, I just use hand-me-down shit from my own computers at home whenever possible, and I tend to write them off my taxes at street value as a subcontractor when possible.
I'd be wary of "You may provide your own computer" turning into "You MUST provide your own computer"... Pretty soon it might be "Please provide your own laser printer and toner". I've run into that before, at the very least, it's made the company very whiny about having to pay for repairing my printer, "I thought he supplied all his own gear?" Just make sure you draw the line in a reasonable place.
In the auto industry, mechanics generally provide most of their own tools, and the company provides a tax-deductable tool allowance, but consumables like greases, rags, and batteries for cordless drills are provided by the company. A mechanic may provide his own air ratchets, but the shop completely is responsible for the infrastructure to connect those tools (air fittings, compressors, etc). That would be a good baseline.
It's another example of how scientists can be brilliant and yet oh so stupid at the same time. Sales guys get their companies to pay for their phones, cars, vacations, meals, computers - and even taxes to some extent. Have we really gotten to the point that we're dumb enough to let employers trick us into buying equipment that is used to benefit the company? So now it's going to be standard practice for companies to give their engineers sub-par products - to sour the milk - and have them use their salaries to pay for equipment? Somebody please try to use some common sense and outline a procedure that people can use since we're too feeble minded to figure it out on our own. Even if I personally have enough common sense to see reality, the rest of you drag me into the circle-jerk by association.
Being a network admin, I can see both sides of this argument. I've had the secretary who absolutely had to have a Mac because she didn't like Windows. Getting her a Mac increased my workload because I couldn't easily manage it as part of the general network. It also created more work for everyone else who had to deal with incompatible file formats. Lots of minor network changes required walking over to her computer to make sure it still worked (like change the GPO for proxy setting). The best option here in the big picture was to teach her that MS Office on an XP box was just as simple to use, but she was related to a high-level manager so she got her way. Having a homogeneous, centrally managed network is far easier and cheaper from an IT perspective.
I've also had the tech-saavy engineer who like the bsd/linux flavor of the week and wasted way too much of his time with Gentoo when his technical requirements were met just fine with the RHEL we used everywhere else. I guess the primadonna title would fit that guy. He's also the asshole that setup an unauthorized dialup modem so he could get into the network from home. Forcing him to stay with RHEL would have made him more productive and made my life easier.
A non-homogeneous environment simply costs more to maintain. Your IT guys need more experience and they get sidetracked on problems affecting only the outliers. When it's just a few oddball workstations you generally don't develop the tools to centrally manage them and have to manage them individually.
I should also point out that I run a mixed network of mostly Windows and RHEL with a smattering of small embedded linux, bsd,etc. I freely admin that I spend more of my time taking care of Windows issues than Linux issues. A wholesale move to Linux would reduce our productivity enough, even if it's just a little while, so don't even suggest that.
A bit of advice though. Don't make enemies of the IT guys. Keep them good terms with them. Treating them worse than the janitor is a surefire way to get treated like an asshole. If the IT guys know what you're doing and like you, they generally will try not to break things for you. Samba is a good example. Last year when we needed to enforce NTLMv2 only on the Windows domain, I made sure the Linux admins knew because it would break samba unless they had updated. The asshole who told me to fuck off when I asked why he needed a Gentoo box to author webpages got zero help when he couldn't figure out how to update samba.
The people who want to bring their PC to work..you don't. The people you "might" want to bring theirs to work..know better and won't.
I turned down a job in 1985 and the reason I gave them became a huge joke at that company.
"I refuse to work for a company that has lower-grade technology than I have in my basement."
My tech is mine and mine alone. If I pay for it, I'll do what I damned well please on it. An employer has certain rights when you connect to their network and I'm not willing to subject my personal machines to their inspection. If an employer wants me to have a phone to be on call, they need to provide one, I'm not using my minutes to do work.
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
Do you know why IT folks hate personal devices? It is because it isn't IT's. We cannot make rules over what you can or cannot do with your equipment. We can't tell you not to download spyware. We can't tell you not to let your teenage daughter install cute cursor packs. We can't make you buy decent (or any!) anti-virus or security software or force you to stay up-to-date with patches.
And what plusses are brought by personal equipment? Well, we are now on the hook to support your own weird applications, like some graphics package that was downloaded off a Russian server and is entirely in Korean(*). We are now on the hook for keeping your eight-year old second hand clone (built by your son's super intelligent friend) running(*). We have to get the company VPN solution working with your weird combination of hardware and software(*). We are now encouraged to install "field evaluation copies" of corporate software(*) so you can do your job when your not-entirely-compatible open source package(*) causes hilarity.
And, when you ignore all this and corporate security is compromised and thousands of pieces of private data are "accidentally circulated more widely than initially intended", it is OUR ass on the line.(**) Frankly, if I'm the one getting canned when it doesn't work, it's MY F***ING network.
You bringing your equipment in may save you time, but it doesn't save the company any money.
(*) = actually happened to me.
(**) == happened to someone I know.
you should read everything on the internet as if it had "but I'm probably talking out of my ass" appended to it.
NO, NO, NO you are living in the age of dinasaurs, and your analysis is totally Windoze centric. I dont have want or care about patch Tuesday, or what ever the hell it is.
... but that is it, and if you cant set up a firewalled VPN with NO performance loss you are an idiot.
... so you need to ensure that they cannot get beyond first base.
The software on my machine is my responsibility, not yours, you may mandate that it must all be legal eg Fedora, SuSe
Dont worry, you need not worry, you and your corporate control freaks are over. NB if you want real security you need to provide a firebreak which does not use computers at all.
As you may have noticed Computers can be hacked eg by NSA, CIA
This is trivially easy, you need a State that permits Corporations with bearer shares, a lawer fiducery, and bank geheimnis; then you establish the Corporation, appoint the fiducery in the name of it, and bank with bankers who will guarentee an account with details written ONLY in a manual ledger accessible only to one or two named officers.
Nothing networked or databased, then you can pyramid that with a second such account, with another bank with the access details sealed from the first. It is easy, and not very expensive and completely uncrackable if you do it right.
YES, exactly right, avoid such loosers.
I'm not suggesting that us bringing our own personal computer into work is the right solution. I'm recommending that IT policy makers look at options that don't make life on a corporate desktop so unbearable that we all want to bring in our own computers. If you chose alternatives that weren't so security challenged that they require you to neuter them, then we wouldn't want to bring in our own computers in the first place. Who really wants to lug a computer back and forth every day? Not me. But I'll take it over the current standard corporate desktop which is nearly unusable.
There's a difference between "let's have IT support everyone's personal equipment" and "let's not prohibit people from connecting their own computers to the network". Limit it to people considered technically competent, and feel free to reject support requests where the problem appears to not be on your end -- though don't be too quick to dismiss the idea that the problem might be on your end, particularly when dealing with developers and others who ought to have a clue.
If someone causes a problem due to carelessness, then maybe they lose the privilege of connecting their own stuff. But don't use the firewall as an excuse for crappy internal security.
Accommodating such differences is a separate question from restrictive policies, though I don't see why it's IT's business if some department wants to pay extra for a special license, or for extra IT manpower. If you're asked to pay for it out of your existing budget, that's another matter.
I'm glad you're happy. Your users -- who may also be highly valued employees that the company wants to be happy -- may not be.
"Runs nice and quick" is not something anyone would ever say about a Windows computer after IT loads their crap on it where I work. Their Linux boxes aren't slowed down quite as much, but they run old software with lots of weird local IT changes (e.g. they override the already old distribution's version of sed with an even older version. They said it was because they thought someone at some point might have depended on that old version, but they didn't seem to have a clue who or why).
We're not limited in the software we can install. We can, in some instances, wipe the OS and install whatever we want and manage it ourselves. But corporate policy prohibits us from connecting a piece of hardware not *owned* by the company to the network, not even to connect from home over the VPN, not even on a virtual machine dedicated to the task.
My job doesn't involve running "office 2003 or 2007". Or Windows, for that matter. It does involve compiling large codebases, with compilers that grow ever slower in their efforts to make the generated code faster. It also involves a variety of development and communication tasks that benefit from running up-to-date software.
So, does "Fri Jan 14, '11 03:31 PM CST" translate into work hours in your time zone?
Seriously, it's not IT's job to determine the extent to which employees should be allowed to take a break, or what constitutes "work".
Working from home fixes much of the envy issues.
I feel fantastic, and I'm still alive.
What about time spent unable to work because of a restrictive IT environment? Time spent dealing with an out-of-date OS on which I cannot install newer application software that I need (no, I'm not talking about "time wasters")? Waiting for builds on slow hardware? Not being able to effectively work from home (include here the time I wasted trying, in vain, to get some sort of usable VNC setup on top of the old, IT-managed, company-owned Windows laptop that I'm allowed to VPN with, so I could get to my Linux desktop in the office? I eventually got it working, mostly, but it wasn't usable.)?
You can't treat all employees and all jobs the same.
Seen it happen. When I was a network engineer (a long time ago), we needed a new laptop to be able to use to go directly plug into hubs, switches routers etc. We had a contractor working with us and he was always using his own laptop rather than the PC supplied by our work (because the desktops were shite), and the response was the Networks could use the contractors laptop for any remote work we needed to do. The fact that the contractor was using it instead of the work PC was beyond the point, the managers saw a laptop and decided they had free reign to do what they liked with it, even though the knew it was the contractors personal property.
I'd rather resign than let the company dictate to me who can and can't use my personal property and what I can and can't do with it. And for the record, we never did get that laptop we so desperately needed. About a year after I resigned the contractor did too and his laptop went with him. So the networking department was left without a laptop.
Same company wanted us running the network at a Gig, but wouldn't buy us Hubs/Switches that ran at a Gig because they said when we could get the 10/100's running at 1 Gig they'd buy us the 1 Gig equipment.
I can just see this sort of thing breeding more incompetence and laziness amongst managers.
Sure enough, the cow costume was hanging up next to the superhero outfit and sailors uniform. (S,Spud)
One thing to consider in the corporate world, for those that can't understand why companies take a while to upgrade hardware, is that you have to consider that all assets, even a laptop, must both be in service for a period of time to make the purchase cost effective, and the lifetime costs of the item (initiail purchase, support) must be realized over a set period of time by the accounting department. Each person can't go buy a new $500 laptop every year (or even 2, or 3). We're completing a global refresh project now with all new hardware (laptops, desktops, and some servers). Typically this is done every 5 years at which time the hardware can be taken off the books and disposed/sold/donated. The new CIO says that in another 5 years, instead of a big refresh project, every user gets an allocation of funds and can purchase whatever hardware they want. BUT, at the same time, we are currently piloting running ALL apps via Citrix XenApp. So while all the Mac freaks will be excited to go buy an overpriced piece of junk, they're just going to be using Citrix! Even Office 2010 and Communicator are in Citrix.
It's not what they can afford, but what they're willing to spend. Your employer cares about money. They're going to pick something reasonably cheap with good enough performance to do the job. An enthusiast is willing to spend thousands of dollars upgrading upgrading their machine because they want the speed.
We're getting new machines at work. They're decent, but my coworker just built himself a machine with twice the cpu power, twice the I/O speed, and three times the RAM because he's interested in video editing.
Do you know why IT folks hate personal devices? It is because it isn't IT's. We cannot make rules over what you can or cannot do with your equipment. We can't tell you not to download spyware. We can't tell you not to let your teenage daughter install cute cursor packs. We can't make you buy decent (or any!) anti-virus or security software or force you to stay up-to-date with patches.
I agree that this is the problem. In short, we end up responsible for fixing it all no matter what.
You can say, "No, no! The employee will take responsibility for his own system!" But what happens when it's infected by a virus or somehow hacked because of improper precautions? Who's going to be responsible for fixing the problem? If the user can't save files anymore because every byte of their system is taken up with MP3s, who's going to have to clear off the hard drive? If a user getting paid $200/hour is not able to work for want of a $300 desktop computer, whose job will it be to resolve the issue?
Do you want the user to fix these problems? Good luck.
Or do you want me to fix all these problems? Then either let me control the situation, or else give me a huge staff to deal with the chaos that will ensue. The huge staff will cost you more than the money you'll save from not buying computers.
Another time, years ago, I was stuck with a 486sx PC. I had a Sun Sparcstation at home. I brought in the Sparcstation and was much, much, much more productive for two weeks, until the beancounters spied it and asked WTF? I copped to it being my personal machine, whereupon they directed me to take it home at the end of the day because it ran afoul of their insurance requirements that all in-house equipment be owned by the company. It was only months later that I realized they leased a crapload of machines from GE Leasing, and that I could have suggested, "Why don't you lease it from me for $1/month?", as a way around that if the problem REALLY was the insurance issue they described.
Still another time, I worked for a large tech company. Whilst they were a bit skittish about people's personal laptops being connected to the domain, as long as you went through the setup process to put all of their security software on your machine (and were willing to accept someone else's closed-source security software whose full functionality you could not predict), they tended to tolerate it. Eventually, they got more generous in handing out laptops.
At the same company, they have a policy of allowing personal phones to connect to the Exchange server for email and calendaring purposes. Not everyone gets a company cell phone, but since it's a company full of geeks, most employees have one of their own. Being able to catch up on your email in the morning whilst on the bus to work, and being reminded while you're out at lunch that a super-important meeting is beginning in 15 minutes and you better get yourself back to the office, are valuable things that contribute to productivity. Sure, the company may lose a bit in security by "opening up" their email server to personal devices, but multiple large and small companies I know have concluded that the tradeoff is worth it. Funny thing was, they didn't like iphone, and I THINK they might even have had an official policy against allowing iphones on their network, but since at least 20% of the technical staff at the company (a couple years ago) seemed to use iphones, I'm not sure it was enforced.
At my present employer, only high level managers and up have access to smartphone based email. Some other employees have company phones, but they're not net-access-capable. However, many employees seem to have Apple, HTC, Sony, etc. devices with smartphone functionality -- and many of them could benefit from being able to send "oops, I'll be a bit late, stuck in traffic" to the office, or check their email while out in the field, etc. So I'm currently playing change agent and talking up the benefits of allowing them access to company email from those devices.
Ah yes, the prima donna developer. I knew you'd be along eventually. You're so much more enlightened than those plebes doing the IT grunt work. You're a beautiful snowflake and everybody else is just getting in your way of creating... wait a sec... which idiot developer that said they NEEDED access to the production environment just dropped the customer table?
Intel has mentioned that this is the future. Intel is very security conscious and I'm sure they will be forcing a home IT build with VPN access along with what they have already, PGP disk encryption. In the future, I'm also sure Remote-wipe will be part of the process.
;-)
For the employee, this allows them to choose the laptop that suits them
For the employer, it allows them to push a partial cost of the laptop to the employee. What will be burdensome is the fact that IT will have to support so many builds and hardware.
So I guess, initially the employee will be able to purchase a few subsidized business grade laptops... I'd definitely buy a heavily discounted Thinkpad
Think about this... All business files/documents are stored in a data center under the employers controll, only to be accessed via VPN, or LAN (on employer's site)...
not a big fan of slashdot's lack of WYSIWYG
yes, sometimes one may do so (urgent email during Holiday), but it should not be required.
I work in a physics lab and i do not bring (and buy) my own soldering iron. I do not buy and Autocad License to do the drawing at work. And if the multimeter at the company sucks i will not bring my private one (even if it would be better). I will go to my Boss and ask for the permission to buy what i need, and explain that if its not given the quality of my output will suffer. More often that not its approved in my experience, especially for hardware. If the way in which the approvals are decided is irrational (e.g. uninformed), it is usually to deeper problems of your boss with leadership (e.g. incompetence in delegating, weak guidance).
My former Boss usually said to me: "you are responsible for the detail, just tell me if you believe that some important Problem can be solved in a specific way, and explain briefly why you think so and why that is important. If we have the money and it solves the problem, do it" ()
My current Boss believes that he understand everything and delays thing where he does not understand the need of endlessly with irrational arguments. Things which he think he understand are bought easily even if they cost 10x more money thank what you asked for.
The funny think is that if i divide budget used per published journal article the ratio is in favor by roughly 20 to 1 for my former Boss (yes, i will leave soon).
The other option is: My company pays me at a freelancer rate, i bring my own stuff, do everything as i think it should be done and go. However i observe a discrepancy between the payment i get and the rate i would get as a freelancer. And this difference is exactly for the
You had to scrape together a few grand to buy a decent 8-bit system, while commerce hummed along on mainframes. Having more powerful equipment at home seemed like a lunatic idea. I had to beg management to buy an instance of Oracle for a development box. I didn't get it. No companies readily admit that the Android in your pocket beats the hell out of their blackjack, and databases for development purposes are free to download. It is a very cool time indeed.
I never understood people who try to get a new ergonomic mouse through the company. Why bother? The exact model you want is waiting in the shop and you can get it without signing forms. The money? Come on, a good mouse/keyboard lasts years. For pennies a day you get to use the tool you want. No hassle.
And I have been extending that. Want a quality screen to stare at all day with your precious eyeballs? Buy it yourself. Faster HD? Put in a SSD and no longer cause yourself headaches with slow searches etc.
In other industries it is perfectly normal. Any good cook will have his own knives. They are the ones he likes not what some manager squeezing pennies thinks is the best buy. Most carpenters and mechanics have their own tools, often in the form of their own carts completely kitted out with everything they want and need from tools to stereo and coffee machine. Knew one guy who really likes his esperesso, so his tool cart had one build in. Other liked his music and so it had huge speakers build in.
Why do most in IT insist on using the most craptastic HP/Dell crap that can be bought for LOW-LOW prices as our tools of the trade. Even if the company supplies the paint brushes, you can be sure they won't be the ones from the department store on the corner. The right tool for the job, is it such a hard concept?
I have been interviewing for jobs and only ONE company had hardware on the desks that I considered "Nice". Everything else is the same old standard crap. That screen the boss stares at for 1 minute a day is something I will be looking at 8+ hours a day. Why should I have my home machine that I sit only 2+ hours at be significantly better then the office machine? That makes no sense.
Does a professional photographer use an instant camera at work and a Hasselblad for holiday snapshots? No? Then why do you use a IPS screen at home and a LCD at work?
Let me bring my own. It will be faster, more robuust and more productive. Of course, I do expect to be paid for it.
MMO Quests are like orgasms:
You may solo them, I prefer them in a group.
Since work pc's mostly are more than one generation older than enthusiast's pc's, it might even be feasible to give your own written-off (and unsellable) hardware a second life at work. At home I upgraded my 22" Samsung monitor to a 24" monitor, while my boss still mandates a 19" screen (because 1280x1024 is the target resolution for our product). I brought my 22" screen and a cheap dual-head graphics board to work so now I have 22" for Visual Studio and 19" for Outlook/internet/testing/comparing. Works like a charm while only costing me about 25 euros (for the gpu), which is a lot cheaper than the hassle of getting a work-provided second monitor.
Ladies and gentelmen, the Bastard Operator From Hell !
Ubuntu is an African word meaning 'I can't configure Debian'
Depends. For someone like me who have vacated house hardware and that hardware is much more powerful than the corporate standard of my company, it would be interesting to use it at work using the company's software and operating system. What after all, you spend much of his life in his work, then it is welcome the opportunity to customize and improve your work place when you can afford it. Of course, this should be optional, those who prefer to follow the company pattern would then use the hardware supplied by the company.
Religion: The greatest weapon of mass destruction of all time
This appears to be a classic example of short-sighted, clueless management. It looks like the introduction of yet another money-wasting business cycle (other examples being "outsource things that aren't are core competency versus its cheaper and better do take care of these things ourselves" and "centralized versus de-centralized."
As the management pendulum marking the extremes of each cycle swings from side to side, a new set of managers (immune from learning from the lessons of the past) comes up with brilliant cost-reducing ideas that they can prove will save money (as long as their analysis is shallow enough - which its guaranteed to be due to their lack of experience). These ideas, when adopted, start the pendulum swinging over to the other extreme. The managers, wrapping themselves in accolades, cheers their foresight and win themselves promotions for cutting costs. Meanwhile, the business spends beauceau big dollars and disrupts major internal processes making the change. After some number of years (long enough for the old managers to not be interested anymore due to promotions and/or firings) the cycle repeats, only from the other extreme. (Note - it is not always simple dollar costs driving the swings - there are many other types of business costs that may be cited.)
This is the vocation of many managers - enacting change for the sake of change and promoting themselves rather than identifying true fundamentals and making the business work better.
One company with which I am familiar has just completed totally locking down every employee's desktop/laptop. This was all justified by various levels of management as being absolutely essential to the business, and the only means by which the company could be absolutely certain that the company's information, and that of its customers, could be protected. I wonder how long it will be until the cost of this effort becomes seen as a negative and a move to promote employee self-provisioning of computing tools emerges... of course, there isn't really anything to prevent the company from requiring employees to furnish their own computers but still taking them over and locking them down - is there?
is stop buying high performance machines for the top executives and only spend that money on the grunts that could actually use that power. Back in my desktop support days I'd groan every time I went into a VIPs office and see an overpriced beast of a machine running excel and outlook. Then I'd go to a programmers area and see the POS 5 year old computer that was given to him and would about pull my hair out. Companies usually have the money to provide high performance machines to their employees, they just elect to give them to the wrong people.
Pay for it yourself and then be subject to their rules and configurations. Sure. How's that P2P client going to run?
I am a prima fucking donna, and I am part of making things that pull in millions of dollars in sales for the company. I don't ever bother the IT staff; they come to me sometimes for help to troubleshoot complex issues. Funny when the rest of the company is *down* do to Windows flaws, my coworker and myself who run GNU/Linux are *up*. In short, if everyone was like us, 98% of people like you would be out of work while the remaining 2% would only be needed a few hours a month at any one company.
"Should Employees Buy Their Own Computers?"
"Companies can struggle to keep up with the constant rate of technological change."
If the company is having trouble keeping up with technology change and even *THINKING* of asking employees to buy their own computers, the company is dying and either needs to make some strategic changes to its products and services or DIE!
Sorry. Some companies are not forever. I should know. I've been involved with quite a few that have died and a few still alive. :-)
My firm's business model includes part time workers working from home on their own computers. Since these knowledge workers already have computers and high speed internet access AND since all of our applications are web based, why do we need to replicate the employee's hardware/software/service environment? We test applications against IE, Firefox, and Chrome to insure compatibility. Even though we buy all services from the cloud, we need to stay abreast of changes in technology such as smart phone access. Consequently, we have a CIO. Our research shows that security problems are more likely to occur in in-house hosted environments than in SaaS environments. Nothing is fool-proof and vigilance is always requiremed, but our model has been working well so far. Finally, the employees love working at home. We have zero capital requirements and happy employees. What's not to like about that?
cause if the guy you are paying 100k a year to to deal with legal issues spends 8 hours on hold with technical support...
sure, IT costs are down, but you didn't get any work out of the guy that day.
every day http://en.wikipedia.org/wiki/Special:Random
A company should always be in control of their own IT infrastructure, software, security etc. Give that away and you lose your stability and probably your precious data.
In any case, most companies have a 3 year replacement plan of the desktops etc. Looking at the software that you use, a bit of Word, Excel, mail, your computer has been fast enough for many years now.
Message from god, Please logoff, rebooting the Universe
Wouldn't that still leave you open to keyboard loggers?
If you know that Big Company X has a personal (own) computer policy, you just need to target the low-security personal computing devices of a few employees.
I'm not a lawyer, but I play one on the Internet. Blog
The argument for this is a crock. There are plenty of ways to make this work for IT, but at the end of the day please please please don't pretend that it's the employee that wants this. Most employees come to work wanting all the tools they need provided to them. In Germany, this is the law in fact. At the end of the day, business is trying to save another buck and wants to offload it to their employees. And for big business trying to save another buck, you really want your employees spending time troubleshooting issues on their own PCs rather than doing their jobs?
I think it depends on the role the computer has for the employees job, and how technically competent they are. If you are talking about programmers or graphic artists etc. and that is important to your business, then you should make sure they have a good computer that lets them work productively, rather than some officially blessed IT department configuration. Give them a realistic level of control and responsibility to configure the computer in a way that suits them. I believe the same applies to the rest of their work space. If the employee wants to use their laptop, it's probably a sign something is wrong with the work environment which needs to be addressed.
I assume the GP means better with respect to doing work. If your employees are having to unnecessarily wait for their software to do stuff, because the company is too tight-arsed to get the best available hardware for the task, then the employee probably isn't working efficiently. If your programmers get coffee while the code compiles, or your engineers are being held up because the CAD software is using all the memory, they probably aren't happy or productive.
With corporations having the ability to silently see and record everything that happens on your computer in the name of security, there are some very real privacy and legal issues to requiring personal computers/devices for business, even if you're accessing remote desktop VMs. Our personal computers have become the place we keep personal income tax, banking, recreational activities, political and philosophical opinions with friends and family, personal health research about our current ailments, and on and on. If a corporation believes an employee or contractor is stealing, you better believe your home PC will fall under the corporate "Acceptable Use Agreement" which gives the corporation the right to snoop anything that attaches to it's network. Most state laws give employers the right to do this with the caveat that they may not "intentionally look" at anything that is personal. But with business and personal all mixed together on a PC, how is it possible for employers to not see large amounts of personal info? Are we all to trust this will not be quietly abused by some employers to discriminate against employees? If you trust that employers will do the right thing, do you also trust that employers will appropriately destroy the data when they are done with it, or store all of those intimate details about you securely (in some nameless service cloud) so that it can't be mined by someone with bad intent? Also, personal equipment can become part of e-discovery in a corporate court case they may have nothing to do with whether you did something wrong. Employees could find themselves giving up an image of their personal PC to law enforcement for court cases their employers are involved in.
With corporations having the ability to silently see and record everything that happens on your computer in the name of security, there are some very real privacy and legal issues to requiring personal computers/devices for business. Our personal computers have become the place we keep personal income tax, banking, recreational activities, political and philosophical opinions with friends and family, personal health research about our current ailments, and on and on. If a corporation believes an employee or contractor is stealing, you better believe your home PC will fall under the corporate "Acceptable Use Agreement" which gives the corporation the right to snoop anything that attaches to its network. Most state laws give employers the right to do this with the caveat that they may not "intentionally look" at anything that is personal. But with business and personal all mixed together on a PC, how is it possible for employers to not see large amounts of personal info? Are we all to trust this will not be quietly abused by some employers to discriminate against employees? If you trust that employers will do the right thing, do you also trust that employers will appropriately destroy the data when they are done with it, or store all of those intimate details about you securely (in some nameless service cloud) so that it can't be mined by someone with bad intent? Also, personal equipment can become part of e-discovery in a corporate court case they may have nothing to do with whether you did something wrong. Employees could find themselves giving up an image of their personal PC to law enforcement for court cases their employers are involved in.
I would not run McAfee on one of my own systems.
Unless they pay me enough to maintain a laptop with it and a system I can actually use I would not accept it.
Well, I might have a way, but it only works on a semi spherical planet in a vacuum.
No no no. He is not the the BOFH. he's much too tame. A true BOFH, wouldn't even argue with you, he might even let you use your system. But in the end, he'll extort both you (perhaps using doctored up nude photos of you with your fake lover which he could send to your wife) and the company to get you sit under his thumb all while making a profit!
No, if you have a company machine and I am the company owner, it is my responsibility to make sure it is a properly working tool for you be as productive as you can be. You're a number, not a person and we can't trust you to do what you're supposed to do. I mean, your net logs for your Internet access are perfect examples of that.
That's all well and good and is honestly more complex than you are making it out to be. Also, you're missing the backend and how you're going to manage all of that overhead in network switching and security alone. I'm glad you think you have it all figured out but in reality, your ideas will not work as cheaply and easily as you think.
Why? People. Your solution needs users with more than a basic knowledge of computers. In the real world businesses, most lack even a basic knowledge of computers. IT's purpose is so that the profit centers can concentrate on being productive and profitable and not worry about the maintenance of their machine. That's the whole purpose of IT. Create an environment that is stable, fast, easy to use and seamlessly integrated. Once I start having to rely on all you code monkeys to keep your machines updated properly and not install stuff like LimeWire on your company issued laptop, that's when my security posture becomes compromised and is no longer effective.
See, it's got nothing to do with what you think you can and can't do. It has everything to do with my SLAs (Service Level Agreements) and what I promise to deliver in the way of enterprise architecture and infrastructure. If I am not the one maintaining your system for you and I leave it up to you then I spend an inordinate amount of time fixing what you screwed up. That costs me time and makes other proactive projects suffer which costs money in the long run. Both ideas are unsat to any manager looking to reduce costs and improve efficiency. What's worse is that god forbid a user actually owns up to causing the problems they have with performance due to spyware and other fun stuff rather than complain to their managerial unit and blame me for not maintaining my promised level of service. So, since you can't be trusted and I'm not paid to babysit your net surfing habits and program installations, it's more cost effective for me to issue you company owned machines and implement company wide security solutions and usage policies.
Also, you should stop kidding yourself. Whether you like Windows or not, it is still the modern standard in computing environments for the majority of commercial enterprises. Linux is a lame duck for anything but clustered computing and even the big name/house UNIX versions are losing ground as well. Apple is, for all intents and purposes, a relative non-player due to products focus more on the consumer level where a computer is a toy or an appliance more than a tool.
Currently, there is no simple way to implement your ideas in Windows and many companies are reluctant to invest capital in the Windows infrastructure they have than to even think about the cost involved in moving from a distributed infrastructure to thee more individual, non-standard node based model you're suggesting. It might work for a small company with very few employees but once you get past the "small enterprise" levels of employees and systems, it's a logistical nightmare full of security holes.
Lastly, whether I'm being a jerk in your eyes or not, this is reality and unless you can give a long-term picture with a comprehensive cost-benefit analysis beyond just the computing systems, no one in the corporate world is going to entertain your idea. That's just how it is and unfortunately, it's not going to change any time soon because it would require a massive corporate culture shift. When you're dealing with profits, not necessarily money but profits, people are very reluctant to rock the boat and risk that profit on a what if whey know the have now is a quantifiable value.
No, really, it doesn't because there are many other ways for people to be envious of co-workers.
Then again, that's one issue addressed albeit rather incompletely. What about the several other issues I posed as well as the myriad of other issue that have gone unmentioned but are still equally relevant?