Financial benefits and increased productivity are two reasons companies are embracing the BYOD environment. When permitting users to connect to the organization’s network, security should be a paramount consideration. To ensure the security of the network, client information, and organizational data requires not only the IT security team instituting proper controls, but the user should understand those vulnerabilities, threats and security measures which can mitigate these concerns. The level of secure smartphone use varies from individual to individual and organizations have a vested interest in providing training to their users who wish to connect to company assets, prior to the user being permitted BYOD privileges. This research project examined the security knowledge gaps between users and IT security professionals in the BYOD environment. This was accomplished by reviewing both the users’ and IT professional’s understanding of threats, vulnerabilities and security processes. The users’ perception of training by the organization was also examined and compared to the IT professional’s perception of training offered by their organization. Through analysis of the participants' responses, it was determined that there are security knowledge gaps between the users and IT professionals of smartphone use. The most critical gaps exist with the perceptions of organizational training and information offered. Users consistently identified the lack of training for the BYOD environment. With the identification of security knowledge gaps, recommendations were offered that an organization should consider prior beginning BYOD.