Sustainable ITAM: why cybersecurity and digital sobriety are inseparable in today’s IT fleet management

24 September 2025

2025 is a turning point for IT asset management (ITAM). With rising cyber risks, tighter regulations, and growing pressure to reduce emissions, ITAM is no longer just about keeping inventory in order: it's about building resilient, responsible infrastructures and workflows.

The 3 challenges pressuring ITAM today: carbon, security, and device lifespan

Digital sobriety is becoming a core CSR expectation

IT fleets represent a growing share of Scope 3 emissions. From production to logistics to end-of-life, every terminal has a carbon cost. And in many companies, the number of devices per employee is still increasing, boosting negative environmental impact even more.

At the same time, clients, investors, and regulatory bodies are pushing for transparency and measurable progress.

We are now in times where ITAM teams can no longer ignore questions like:

How long do our devices last?

Are we reusing or repairing enough?

Are we using refurbished devices enough?

Are we making data-driven procurement decisions?

📊 According to the French Agency for Ecological Transition (ADEME), the environmental impact of a computer is 70% tied to its manufacturing phase. Extending its lifespan is one of the most effective ways to reduce digital carbon footprints (this includes reusing, repairing, and refurbishing).

Cybersecurity threats are more complex and more regulated

As remote and hybrid work become the norm, cyberattacks multiply, and the number of devices per employee increases, unmanaged or misconfigured devices pose significant vulnerabilities. But the challenge isn’t only technical, it’s now also regulatory, and not only in the EU.

Between NIS2, DORA, and ISO 27001:2022, ITAM is officially in the scope of compliance. Therefore, organizations must nowadays:

Know exactly what is deployed, where, and how

Secure mobile devices and endpoints

Track hardware-related incidents and response times

And, as importantly, they must be able to prove it.

For a deeper dive into 2025's main regulatory frameworks (NIS2, DORA, ISO 27001), check out our dedicated article here.

Device renewal cycles are accelerating, often for the wrong reasons

As manufacturers release new models faster than ever, many devices are replaced not because they fail, but because they’re misconfigured, underutilized, poorly tracked, or even worse, because they’re simply not the latest model anymore.

Therefore, without accurate and well-managed lifecycle visibility, IT fleets become:

Cost centers instead of value drivers

Sources of unnecessary waste

Security liabilities (due to outdated systems)

The result? Shorter device lifespans, higher costs, more emissions, and more gaps for cyber threats to exploit.

Given that digital sobriety is becoming a core CSR expectation, that cybersecurity threats are more complex and more regulated, and that devices are being renewed faster than ever, using tools that allow for a global vision of these aspects is essential. It’s what our mobilehub platform is built for. You can explore the platform through a demo or start with a free trial.

Sustainable ITAM as a lever for efficiency, reputation, and security

ITAM has long been seen as a technical support function. But currently facing tighter regulations and rising expectations from clients, employees, investors, and society, ITAM can no longer be limited to procurement and maintenance. Today, it’s a strategic function, and when managed sustainably, it becomes a powerful business lever.

Let’s break down the three main impacts of a well-executed ITAM strategy.

A driver of operational efficiency

Sustainable ITAM isn’t just about reducing carbon emissions and electronic waste. It starts with visibility and control (of assets, data, and decisions).

Hence, with the right processes and tools, efficient IT asset management means:

Mapping and monitoring the actual use of each terminal

Gaining full visibility into your fleet’s usage and lifecycle

Allocating assets more smartly based on real needs, reducing over-equipment, underused or idle devices, and shadow IT

Lowering the total cost of ownership (TCO)

Extending device lifespan through better allocation, repair, and reuse

Anticipating renewals instead of reacting to emergencies

This results in a leaner, smarter fleet, as well as a lighter administrative burden for IT and support teams. Fewer resources wasted, fewer support tickets, and better ROI across the IT fleet.

A foundation for security by design

Security isn’t just about firewalls and passwords. It’s also about knowing what’s in your infrastructure. Because every device is a potential entry point, especially if it’s unknown, unmanaged, or outdated.

In that sense, robust ITAM plays a crucial role in:

Ensuring that only authorized and secured devices are in circulation

Supporting endpoint detection and response (EDR) and mobile threat defense (MTD) tools

Providing the documentation needed to demonstrate compliance with regulations like NIS2 and DORA

Identifying vulnerabilities faster by centralizing fleet data

And a resilient ITAM strategy is one that:

Reduces exposure by decommissioning unused or outdated devices

Enables stronger compliance with NIS2, DORA, and ISO 27001:2022

Supports zero-trust and endpoint security frameworks

In short, there’s no effective cybersecurity strategy without robust asset management.

A mindset shift for greener IT decisions

Sustainable IT isn’t just about repairing or recycling devices. It’s about rethinking how we manage them from end to end. And in ITAM, that means embedding sustainability into every step of the device lifecycle.

A responsible IT fleet management strategy must extend beyond basic maintenance. It should integrate environmental and security considerations from procurement to end-of-life.

A truly sustainable ITAM approach includes:

Procuring refurbished devices when appropriate, without compromising security or usability

Extending device lifespan through better configuration, allocation, and usage monitoring

Repairing devices throughout their lifecycle, not just when they break

Protecting devices physically and digitally to reduce losses and increase longevity

Recycling and reusing devices at end-of-life, through certified and transparent processes

Tracking key KPIs such as average lifespan, repairability, reuse rate, and carbon footprint

The right tool for IT fleet management can also be used to monitor:

The average lifecycle of each type of device

The share of refurbished devices used across departments

The rate of successful returns and refurbishment after use

The repair rate across all devices and departments

This kind of visibility helps reduce environmental impact while improving cost-efficiency and compliance. This helps not only to do better for the planet, but also to unlock smarter, cleaner, and safer operations.

At bconnex, this is the philosophy behind everything we build. Our mobilehub platform is designed precisely to provide you with these insights about sustainability and cybersecurity, and to offer you a global view of your IT fleet. You can explore the platform through a demo or start with a free trial.

A signal of trust and responsibility

Companies are increasingly evaluated not just on what they do, but how they do it, whether in HR or IT, or even other departments. Thus, sustainable ITAM is also a reputational lever.

It is important to keep in mind that in many sectors, sustainable ITAM contributes to:

Employer brand and employee experience (especially among younger, value-driven talent)

ESG performance, through better Scope 3 emissions tracking and reporting

Customer trust, particularly in industries handling sensitive data such as healthcare, finance, or public services

It's not only about reducing impact, it's about demonstrating that IT decisions are aligned with broader corporate responsibility goals.

In a context where clients, partners, and candidates pay increasing attention to values and transparency, ITAM becomes a key driver of corporate image.

The bottom line is that when managed properly, IT assets stop being “just devices”, they become a bridge between operational excellence, data protection, and environmental impact.

How to implement a responsible and secure ITAM strategy: actionable methods, tools, and indicators

Sustainable and secure ITAM isn’t improvised. It requires structured processes, adapted tools, and clear indicators to track performance and impact. Here’s how to start building (or improving) your own strategy.

Adopt a lifecycle-centered approach to IT assets and make sustainability a part of every ITAM decision

The first shift to make is to manage assets across their full lifecycle, not just during procurement or support phases. Every step counts, from purchase to daily use, from repair to reuse or recycling/refurbishing.

That means building your ITAM processes around 5 key phases:

Procurement (including criteria like security, repairability, sustainability, or certified refurbished options)

Allocation and usage (aligning device type with job role, avoiding over-equipment, etc.)

Support (including monitoring, reconfiguration, and preventive repair)

Second life (tracking opportunities for internal reallocation or reuse)

End-of-life (ensuring secure data wiping, recycling, or reconditioning, with documentation)

To measure performance at each stage, the following indicators are essential:

Average lifespan per device type

Repairability rate

Reuse rate

Refurbishment eligibility rate

CO₂ impact per device (embedded + operational)

These KPIs can then be used to support CSR reporting (Scope 3), IT budgeting, and hardware procurement decisions. They also contribute to aligning IT operations with broader ESG goals.

Looking for a partner across all phases? Contact us.
Looking for a tool to help monitor it all? Try mobilehub.

Make cybersecurity part of every ITAM decision

Security must be embedded in every ITAM action, especially in 2025, where compliance and cyber-resilience are now expected.

A secure-by-design ITAM strategy involves:

Accurate inventory and ownership tracking

Integrated policies for mobile device management (MDM) or enterprise mobility management (EMM), EDR, and MTD

Vulnerability tracking across the fleet

Device decommissioning procedures

Compliance documentation and audit trails

And as of 2024–2025, three major frameworks now explicitly include ITAM:

NIS2 (Network and Information Security Directive)

DORA (Digital Operational Resilience Act)

ISO 27001:2022, updated with asset and device-related controls

Cybersecurity is now a strategic requirement and priority for all sectors. The NIS2 directive and DORA regulations impose strict obligations, including on IT service providers. ISO 27001 (even in the EU) and GDPR remain essential pillars for structuring cyber resilience. 

The bottom line is that organizations must now secure their devices and be able to prove how they do it.

For a deeper dive into these regulations and how they impact ITAM, check out our full article: Cybersecurity regulations in the EU in 2025: understanding NIS2, DORA, and ISO 27001

At bconnex, we are committed to this dynamic, in particular with:  

Proactive compliance to guarantee the security of our customers' data and that of our own information system

Continuous monitoring and adaptation to new requirements

Supporting our customers in their cybersecurity initiatives

Contact us if you are in need of a cybersecurity partner for your IT fleet.

Monitor and optimize with the right tools and KPIs

Finally, responsible ITAM is a living system. It needs to be monitored, optimized, and adjusted over time.

With the right platform, organizations can:

Track every device’s status, usage, and security posture

Track user device usage style to better adapt devices to users (high-frequency device change, high rate of damage/repairs,…)

Generate reports and alerts for lifecycle anomalies (short lifespan, low reuse, missing returns…)

Monitor environmental, security KPIs and other KPIs in real time

Gain predictive insights (e.g. estimated end-of-life, reallocation potential)

In short, the right tool won’t just track devices, it will help you manage your fleet better, whether from the point of view of devices, users, sustainability, or cybersecurity.

mobilehub gives you a centralized, strategic view of your IT fleet, with the data and tools you need to manage assets in a smarter, greener way, and more securely. Try it for free or book a guided demo.

Building responsible IT workflows: it’s all about anticipation

In 2025, responsible IT asset management is no longer a nice-to-have but a necessity. What’s at stake? ROI, compliance, cybersecurity, and a company’s reputation as a responsible employer and service provider.

Yet many organizations still treat ITAM as a set of one-off tasks: order, allocate, replace, dispose. However, in today’s landscape, that’s no longer enough.

Sustainable ITAM is a continuous journey, not a checklist. It’s about anticipating needs, extending device value, and aligning operations with long-term goals, from carbon reduction to data and user protection.

So how do you move from intention to action?

Build frameworks, quick fixes: structure your ITAM strategy around lifecycle stages, not just procurement and support.

Break silos between teams: IT, CSR, procurement, and compliance must share goals and KPIs to build a unified approach

Track what matters: focus on dual-impact indicators: cybersecurity and environmental performance

Act early: proactive organizations stay ahead of audits, crises, and talent expectations

From our experience at bconnex, the companies that succeed in building sustainable IT workflows are those that don’t wait for regulations or emergencies. They invest in visibility, culture, and alignment, and make digital responsibility a shared goal.

The future of ITAM lies in convergence between tools, teams, and values. It’s time to stop managing assets in silos and start building smarter, greener, safer infrastructures.

In 2025, it’s the final call to integrate simple but powerful dual indicators: security and environmental impact.