As we all know, mobile devices have become not only an integral part of the workplace, but even in society. Therefore, the safe deployment of these devices is of paramount importance not just for individuals, but businesses and corporations, government agencies, as well as other entities.
- Mobile devices have indeed become an integral part of any corporate network, as many employees these days now login from their Smartphone to access shared files and other types of resources.
- In fact, mobile devices have become the prime target for the Cyber attacker today. Thus, an understanding of the risks and threats that are out there and how to combat them in a proactive fashion is a must.
- In some industries, such as that of healthcare, employees use their Smartphone to access confidential patient information. Thus, the need to understand the federal laws surrounding the protection of this data is very important, especially that of HIPAA.
How to Secure Mobile Devices in Your Environment
1) You must formulate and implement a Mobile Device Security Policy:
- This should be a part of the overall Security Policy of any business or corporation, and should include the following elements:
- The specific types of resources that can be accessed via a mobile device;
- The degree to which mobile devices can be used to remotely access these resources;
- How Mobile Device Management software should be installed and configured not only in the devices themselves, but also on the servers that are synced up with them.
- How firmware and software upgrades/patches should be installed on the mobile devices, and the frequency for checking these upgrades on the wireless vendor’s websites.
2) Create a Cyber threat model landscape for your specific Mobile Device environment:
By designing such a model, your organization will have a much better understanding of the threat landscape from a visual perspective, especially when quantitative weights are assigned to each kind of associated threat. Thus, you will not only be able to ascertain the security requirements for your mobile devices in an expedient fashion, but also the controls that are needed in order to safeguard them from employee misuse (in fact, employee negligence is deemed to be the weakest link in the proverbial security chain).
Our next blog will continue with the theme on more tips on how to secure the mobile devices in the work environment.