The corporate world has well and truly embraced mobile technology, utilising mobile devices to enhance productivity across their workplace and enable a borderless work environment. However, with mobility comes a concern – how can a company secure devices operating from multiple locations?
Mobility has enabled anywhere, anytime access to company data and tools, allowing employees to do more. However, it also means that companies are now more vulnerable – regardless of whether they are providing mobile devices to their workforce, or allowing employees to access company services from their personal laptop, tablet, or phone. Fortunately, there are certain things companies can do to reduce their risk and secure employee mobile devices:
- Apply Mobile Device Management (MDM), such as Cisco’s Mobile Device Management solution, to allow the company to wipe sensitive data from lost and stolen devices remotely. MDM also allows companies to enforce device security policies, deploy software and apps, perform troubleshooting across a mobile fleet, and take authorised remote actions against threats.
- Enforce password and pin protection policies on all devices to add an extra layer of protection for any device containing company data, or with access to company files and services.
- Ensure that devices are equipped with anti-virus protection, as well as data loss prevention software. Companies should also ensure that device updates and patches are regularly tended to, keeping software up-to-date to prevent attacks that may come through loopholes that exist in old versions of existing software.
- Utilise application control for devices accessing company networks, to help ensure that employees utilising their device on internal networks are not able to access apps and services that may introduce threats to the company’s infrastructure.
- Apply Network Authentication to help identify which device is associated with which employee, and ensure that user identities and access are relevant to their role and level of authorisation.
- Understand user identities to help companies understand who is using what device, and why. This is also essential for helping businesses manage their mobile fleet, allowing them to know which devices are active, how many are not in use and take action on devices belonging to employees who may have left the company or newly come on board.
- Encryption is also an advantageous asset for mobile device protection as it helps ensure that a device has an extra layer of security that hackers must go through before accessing sensitive company information. Furthermore, application control on employee devices will.
- Apply an acceptable use policy to make sure that employees are aware of their responsibilities regarding device use, network access, and corporate security. An Acceptable Use Agreement can include conditions relating to the use of a device, as well as grant permission for remote-wipe capabilities and the seizing of the devices for any necessary and appropriate matter. This ensures that the responsibility for device security is shared between the company and the users.
Not quite sure where to start on your security journey? MOQdigital can help with a Cisco Umbrella Proof of Value.