Mobile Device Security and Privacy. Discussion - Planning Considerations for a Successful Mobile Device Program

Size: px
Start display at page:

Download "Mobile Device Security and Privacy. Discussion - Planning Considerations for a Successful Mobile Device Program"

Transcription

1 Mobile Device Security and Privacy Discussion - Planning Considerations for a Successful Mobile Device Program August 2012

2 Discussion Topics Mobile Device Definition and Characteristics Mobile Device Access High Level Architecture Mobile Device Use Cases Functionality Versus Threats Example Threats to Mobile Devices Controls Available Risk Reduction Options Bring Your Own Device (BYOD) Non-BYOD Enterprise Device Refresh - Planning Considerations for Program and Device Deployment Stages 2

3 Level Set Basic Mobile Device Characteristics Generally, mobile devices refers to mobile phones, smart phones, tablets and specialized mobile computing devices that primarily connect to a wireless carrier for communications. Excluded are traditional portable computing platforms such as laptops and touch screen computers running a laptop operating system (i.e. Windows). Mobile devices will normally include a tailored purpose operating system such as ios, Android, Blackberry OS, Windows Phone, Symbian or a proprietary device OS Mobile devices generally include the option to connect to available wireless broadband services in addition to the carrier network Many types of mobile devices will be able to download applications from the Internet or proprietary services unless specifically blocked by the device configuration Generally, users will be able to synchronize their devices with enterprise applications via desktop/laptop computers and/or wirelessly 3

4 Examples of Common and Emerging Mobile Devices Blackberry Several device models primarily used in conjunction with the Blackberry Enterprise Server. Introducing tablets based on Palm OS via acquisition. Apple Several versions of the iphone and three versions of the ipad. Based on synchronization using itunes, icloudand Apple s enterprise device management tools. Applications added via App S tore. Android Google s operating system deployed on phones and tablets from multiple manufacturers. Used in conjunction with Google s services and applications normally added via Android Market. Windows Phone and Symbian Windows Phone replaces Windows Mobile. Symbian OS found primarily on Nokia phones and outside of the U.S. Nokia is now moving to Windows Phone as the manufacturer s primary device operating system. 4

5 Mobile Device Access - High Level Architecture Users Mobile Devices Channels / Applications Network Enterprise Browser (WAP / HTML 5) SMS Client Native Clients(App) Voice IM RIA Java ME USSD LAN Connectivity RFID / NFC Bluetooth WAN Connectivity 2G / 3G / 4G / LTE WIFI Protocols SSL / TLS WPA x DMZ Web Publishing Server MDM Gateway Server Mobile Middleware Public API Business Services & Integration OTA Sync P2P Web Services Secure API Secure SOA Applications Application Servers MDM / MEAP Servers Directory Servers /Domain Servers Content Management Servers Mobile Virtualization Solution Core Back-office Platforms (e.g. ERP) Data CRM Inventory Management Sales Financial Other Content 5

6 Mobile Access at Work Use Cases and Risk Profiles Low Risk HIGH Organization provides only Internet access via Wi-Fi, normally via a guest network arrangement Organization provides access to and calendar via mobile browser (i.e. Outlook Web Access) Organization provides synchronization of and calendar via a mobile application Organization provides access to corporate applications and data via a thin client model (e.g. Citrix) Organization provides access to corporate applications and data with on-device data storage Organization develops and delivers custom applications to mobile users with data modification, direct input and on-device storage Low Functionality HIGH 6

7 Lost or Stolen Devices - The Number One Threat Associated with Mobility Programs 56% of us misplace our cell phone or laptop each month 113 cell phones are lost or stolen every minute in the U.S. 120,000 cell phones are lost annually in Chicago taxi cabs 25% of Americans lose or damage their cell phone each year Major city transit authorities receive over 200 lost items per day Source: MicroTrax Study,

8 Other Notable Threats to Mobile Devices August 2012 First variants of Zeus malware detected on Blackberry devices. Feb 2012 Mobile social network Path caught uploading users address books to their network without approval. Class action lawsuit against 18 companies filed in March Jan 2012 Up to 5 million Android users download 13 malware infected applications from Google s Android Market Jan 2012 QR Codes used to trick users to visit mobile spam sites Dec 2011 CarrierIQ tracking software found on a wide range of devices Oct 2011 Device manufacturer HTC admits vulnerability in their phones that can cause unauthorized access to data Sept 2011 German security firm G Data reports mobile malware increased 270% during the first six months of 2011 with 1.2 million new variants March 2011 Droid Dream malicious code was delivered to more than 260,000 mobile devices within 58 downloaded applications from the Android Market February 2011 Malware Zeus Mitmo combined traditional PC malware with mobile phone malware sent by a bogus SMS message which appeared to originate from the user s bank to steal bank log-on passwords 8

9 Mobile Security Controls Policies and Procedures * - Acceptable Use Policy - Data Classification and Handling Policy - Social Media Policy - Information Security Policy - Device Loss Process/Workflow - Incident Management Plan Risk Reduction Options User Acknowledgement and Opt-In - Signed User Acceptance Form - Clear Instructions For Reporting Loss of Device - Consent to Geo-Track (As Applicable) - Potential Tax Impact (Certain States and Countries) - Specific Security Training for Users - Limits on Supported Devices Technical Controls and Platforms - Blackberry Enterprise Server - Exchange ActiveSync - Vendor Security Controls - On Device Encryption - Mobile Management Platform (MDM) - Mobile Device Anti-Virus/Malware (As Warranted) Auditing, Logging and Monitoring - Periodic Audits of Mobile Program and Key Controls - Integration with Log Management and SIEM Platforms - Periodic Survey of Users to Confirm Compliance * With Specific Content for Mobile Device Use 9

10 Bring Your Own Device (BYOD)

11 BYOD Program Payment Options May Impact Controls Self Pay User purchases device and pays for monthly service. User uses the device to access company resources primarily for personal convenience. Pros - the company has no telecoms management overhead. Cons - there is no control over the device types or incentives for the user to report problems. Sponsored * User selects an approved device that they pay for from a list and the company pays monthly charges directly to the carrier. This is normally done by an Intranet site hosted by a 3rd party. Pros - the company can manage device types and offloads telecoms management to a 3rd party. Cons - This can be a very costly proposition if large number of employees go mobile. There's a potential for high use and abuse. Stipend * User purchases device and pays for monthly service - usually with published corporate discounts. The company reimburses each month for business calls or provides a set stipend each month for use. Pros - Minimal advantages as the company cannot control device types and is still managing telecoms in some fashion. Cons - there is no control over device type. * In certain States and foreign localities, they may be a potential tax impact for Sponsored and Stipend models. 11

12 Bring Your Own Device Security Considerations Many organizations have now opted to allow employees to procure their own devices which will ultimately connect to enterprise data and resources A Bring Your Own strategy presents additional security and privacy challenges which should be carefully considered prior to implementation Policies must be carefully crafted that mandate certain restrictions on the employee s access to corporate data with a personally owned device. Policies should cover minimum device security standards, use of anti-virus or endpoint security software based on legal or compliance requirements and clear language regarding consent for the enterprise to access enterprise data on the device on a timely basis. The enterprise should aggressively monitor access by employees with personally owned devices and consider restricting access to the minimum level required to perform the employee s role (e.g. and calendar) The enterprise should reserve the right to rapidly bar access to data and resources by employees with personally owned devices if necessary to protect enterprise data, address newly identified risks or to comply with legal or compliance requirements It is becoming increasingly hard to efficiently operate a BYOD program without using a Mobile Device Management (MDM) platform 12

13 Common BYOD Challenges and Risks BYOD increasingly reopens traditional debates on use of personally owned laptops and computing equipment (i.e. Macs, external storage, printers) Use of personally owned devices blurs owner responsibilities regarding device support, ownership of data and how much access and control the organization may have to data on the device There is still frequent resistance by users to sign acknowledgements or acceptable use agreements ( It s my device! ) Users want the latest smartphone, regardless of what operating system or features the organization is able to support Users have little incentive to report lost or stolen devices on a timely basis. In many cases the organization will only learn of a lost device when the user requests access for a new device If the user cancels carrier service, it is impossible to complete over the air device wiping 13

14 Specific Recommendations for Enterprise Mobile Device Refresh Programs (Non-BYOD)

15 Planning Considerations Prior to Procurement It s important to consider long term mobile strategy prior to a purchasing decision. Key requirements can be included in Request for Proposals for mobile devices and management software. Some possible considerations prior to procurement include: o Do the intended devices meet enterprise security and privacy policies (or are policy changes warranted in light of the new capabilities)? Can the devices support encryption if required for sensitive data or compliance reasons? o Can security features such as remote wipe, policy enforcement and remote device location be enabled? o Will the enterprise allow limited personal use of the device and the carrier service? If not, how will charges be calculated and recovered from the employee? o If employees are allowed to add content to the company provided devices, who owns the content (i.e. applications, music, games, etc.)? How can this content be transferred prior to return of the device to the company? o What mechanisms are available to deploy enterprise custom applications to the devices? o Do the devices and management software include location based services that can track the location of the devices? If so, does the enterprise require a privacy policy for employees using the devices? 15

16 Planning Considerations During Procurement Consider friendly user field tests of proposed devices to measure usability, assess potential risk and identify specific policy gaps Explore vendor security assets such as white papers, configuration guides, deployment tools and case studies Request results of mobile code and management software security code reviews and testing from short listed vendors Consider contacting other companies who have deployed similar devices to obtain their lessons learned Research reported security flaws and attacks against devices and operating systems using resources such as SearchSecurity.com. SANS.org and fiercewireless.com 16

17 Receipt of Devices and Distribution Consider having the devices delivered to a central location for inventory, staging, power on testing, configuration and preparation for issuance to employees. Test encryption and decryption if enabled. Verify that device packs are complete and include all accessories. Use barcode scanners if feasible. Determine if devices will be marked as company property and prepare durable labeling in advance. Use return to if found labels per enterprise policy. Collect basic device information for asset management purposes including the device serial number, IMEI and/or ICCID. (Some vendors may provide this information on a list with the devices.) Consider providing employees with documentation along with the device to include enterprise security and acceptable use policies, instructions on how to report problems, theft reporting procedures and a FAQ Consider using an inventory and pre-deployment checklist to support a sustainable and repeatable device preparation process 17

18 Device Issuance to Employees Determine the most appropriate way to distribute devices including to employees who may work from remote locations. If mailed, consider courier services or certified mail with delivery tracking. If done in person, determine if the carrier or manufacturer can assist in this process particularly for large volumes. Consider having employees sign a receipt for the device and accessories which includes consent for the enterprise to access enterprise data on the device, employee return of the device on departure from the company, consent to track, device upgrade policy, etc. There should also be enterprise approved text on e-discovery requirements should the device be included in a legal discovery order. The receipt or accompanying documentation may include specific provisions for payment for personal use, payroll deduction for loss of the device or failure to return the device at the end of employment. This may also include the use of a promissory note if employees elect to retain the device if within the enterprise s policy. 18

19 Considerations During Normal Operations Train the enterprise's Help Desk staff on mobile device policies and procedures. Establish Help Desk liaison arrangements with the carrier(s) and device provider(s) to rapidly address more complex technical issues. Arrange for the carrier(s) and device manufacturer(s) to provide security and technical alerts covering the services and devices Integrate mobile device use cases into the enterprise security violation, breach reporting and disaster recovery plans. Consider having prepared checklists for managing incidents involving loss of mobile devices containing sensitive or highly regulated information. Conduct periodic tests of incident handling procedures involving mobile devices. Consider including the mobile device program in internal audit plans to assess program effectiveness and perform periodic risk assessments 19

20 Recovery and End of Life The recovery process is an essential step in efficient mobile device management. Recovery is designed to preclude devices containing enterprise data from remaining outside the enterprise, loss of control or devices being stored in various desk drawers within the organization when an employee departs Device recovery should be part of the employee out-processing process and enforced by both human resources and supervisors Recovery should be closely linked to the asset management process and inventories of mobile devices should be periodically audited for accurate counts The enterprise must have a process to remove sensitive data from devices prior to returning to the carrier or commercial salvage. This can include device wiping, overwriting data or removal of storage media As many mobile devices use solid state drives or non-volatile memory, traditional degaussing techniques will likely not be effective for pre-salvage preparations The organization should maintain accurate documentation detailing which devices have been transferred to the carrier or for salvage at end of life. This documentation will support asset management, e-discovery and possible claims that devices were not returned at the end of their useful life. 20

21 For More Information Joe Krull, CPP, CISSP, IAM, CISA, A.Inst.ISP, CRISC, CIPP Director, IT Risk and Security Assurance Tel

My CEO wants an ipad now what? Mobile Security for the Enterprise

My CEO wants an ipad now what? Mobile Security for the Enterprise My CEO wants an ipad now what? Mobile Security for the Enterprise Agenda Introductions Emerging Mobile Trends Mobile Risk Landscape Response Framework Closing Thoughts 2 Introductions Amandeep Lamba Manager

More information

Mobile Application Security Sharing Session May 2013

Mobile Application Security Sharing Session May 2013 Mobile Application Security Sharing Session Agenda Introduction of speakers Mobile Application Security Trends and Challenges 5 Key Focus Areas for an mobile application assessment 2 Introduction of speakers

More information

BYOD. and Mobile Device Security. Shirley Erp, CISSP CISA November 28, 2012

BYOD. and Mobile Device Security. Shirley Erp, CISSP CISA November 28, 2012 BYOD and Mobile Device Security Shirley Erp, CISSP CISA November 28, 2012 Session is currently being recorded, and will be available on our website at http://www.utsystem.edu/compliance/swcacademy.html.

More information

1. What are the System Requirements for using the MaaS360 for Exchange ActiveSync solution?

1. What are the System Requirements for using the MaaS360 for Exchange ActiveSync solution? MaaS360 FAQs This guide is meant to help answer some of the initial frequently asked questions businesses ask as they try to figure out the who, what, when, why and how of managing their smartphone devices,

More information

ONE Mail Direct for Mobile Devices

ONE Mail Direct for Mobile Devices ONE Mail Direct for Mobile Devices User Guide Version: 2.0 Document ID: 3292 Document Owner: ONE Mail Product Team Copyright Notice Copyright 2014, ehealth Ontario All rights reserved No part of this document

More information

Certified Secure Computer User

Certified Secure Computer User Certified Secure Computer User Exam Info Exam Name CSCU (112-12) Exam Credit Towards Certification Certified Secure Computer User (CSCU). Students need to pass the online EC-Council exam to receive the

More information

Feature Matrix MOZO CLOUDBASED MOBILE DEVICE MANAGEMENT

Feature Matrix MOZO CLOUDBASED MOBILE DEVICE MANAGEMENT Feature Matrix MOZO CLOUDBASED MOBILE DEVICE MANAGEMENT Feature Mobile Mobile OS Platform Phone 8 Symbian Android ios General MDM settings: Send SMS *(1 MOZO client settings (Configure synchronization

More information

COMMONWEALTH OF PENNSYLVANIA DEPARTMENT S OF PUBLIC WELFARE, INSURANCE AND AGING

COMMONWEALTH OF PENNSYLVANIA DEPARTMENT S OF PUBLIC WELFARE, INSURANCE AND AGING COMMONWEALTH OF PENNSYLVANIA DEPARTMENT S OF PUBLIC WELFARE, INSURANCE AND AGING INFORMATION TECHNOLOGY STANDARD Name Of Standard: Mobile Device Standard Domain: Security Date Issued: 09/07/2012 Date Revised:

More information

Tom Schauer TrustCC tschauer@trustcc.com 253.468.9750 - cell

Tom Schauer TrustCC tschauer@trustcc.com 253.468.9750 - cell Tom Schauer TrustCC tschauer@trustcc.com 253.468.9750 - cell Mobile Mobile Mobile Devices in the CU Environ Mobile Banking Risks and Reward Tom Schauer ü Since 1986 ü TrustCC Founded TrustCC in 2001 ü

More information

Secure Your Mobile Workplace

Secure Your Mobile Workplace Secure Your Mobile Workplace Sunny Leung Senior System Engineer Symantec 3th Dec, 2013 1 Agenda 1. The Threats 2. The Protection 3. Q&A 2 The Mobile Workplaces The Threats 4 Targeted Attacks up 42% in

More information

OWA vs. MDM. Once important area to consider is the impact on security and compliance policies by users bringing their own devices (BYOD) to work.

OWA vs. MDM. Once important area to consider is the impact on security and compliance policies by users bringing their own devices (BYOD) to work. OWA vs. MDM Introduction SmartPhones and tablet devices are becoming a common fixture in the corporate environment. As feature phones are replaced with new devices such as iphone s, ipad s, and Android

More information

Kaspersky Security 10 for Mobile Implementation Guide

Kaspersky Security 10 for Mobile Implementation Guide Kaspersky Security 10 for Mobile Implementation Guide APPLICATION VERSION: 10.0 MAINTENANCE RELEASE 1 Dear User, Thank you for choosing our product. We hope that you will find this documentation useful

More information

Successful Mobile Deployments Require Robust Security

Successful Mobile Deployments Require Robust Security By: Maribel D. Lopez FIRMS MUST BUILD SECURITY ENABLED MOBILITY Mobility is no longer considered a luxury within enterprise but a critical part of a networking strategy as 9irms look to increase productivity

More information

Systems Manager Cloud Based Mobile Device Management

Systems Manager Cloud Based Mobile Device Management Datasheet Systems Manager Systems Manager Cloud Based Mobile Device Management Overview Meraki Systems Manager provides cloud-based over-the-air centralized management, diagnostics, and monitoring of the

More information

Chris Boykin VP of Professional Services

Chris Boykin VP of Professional Services 5/30/12 Chris Boykin VP of Professional Services Future Com! 20 years! Trusted Advisors! Best of brand partners! Brand name customers! 1000 s of solutions delivered!! 1 5/30/12 insight to the future, bringing

More information

IBM Endpoint Manager for Mobile Devices

IBM Endpoint Manager for Mobile Devices IBM Endpoint Manager for Mobile Devices A unified platform for managing mobile devices together with your traditional endpoints Highlights Address business and technology issues of security, complexity

More information

Deploy secure, corporate access for mobile device users with the Junos Pulse Mobile Security Suite

Deploy secure, corporate access for mobile device users with the Junos Pulse Mobile Security Suite WHITE PAPER Mobile Device Security in the Enterprise Deploy secure, corporate access for mobile device users with the Junos Pulse Mobile Security Suite Copyright 2010, Juniper Networks, Inc. Table of Contents

More information

Mobile Device Management and Security Glossary

Mobile Device Management and Security Glossary Mobile Device Management and Security Glossary February, 2011 MOBILE OS ActiveSync Exchange ActiveSync (EAS) is a Microsoft technology that allows mobile users to access their Microsoft Exchange mailboxes

More information

ONE DEVICE TO RULE THEM ALL! AUDITING MOBILE DEVICES / BYOD NSAA IT CONFERENCE OCTOBER 2, 2014

ONE DEVICE TO RULE THEM ALL! AUDITING MOBILE DEVICES / BYOD NSAA IT CONFERENCE OCTOBER 2, 2014 ONE DEVICE TO RULE THEM ALL! 1993 2013 1 AUDITING MOBILE DEVICES / BYOD NSAA IT CONFERENCE OCTOBER 2, 2014 2 1 AGENDA Mobile Devices / Smart Devices Implementation Models Risks & Threats Audit Program

More information

BENEFITS OF MOBILE DEVICE MANAGEMENT

BENEFITS OF MOBILE DEVICE MANAGEMENT BENEFITS OF MOBILE DEVICE MANAGEMENT White Paper 2013 SUMMARY OVERVIEW This white paper outlines the benefits of Mobile Device Management in different use cases. SyncShield is a Mobile Device Management

More information

SECURING TODAY S MOBILE WORKFORCE

SECURING TODAY S MOBILE WORKFORCE WHITE PAPER SECURING TODAY S MOBILE WORKFORCE Connect, Secure, and Manage Mobile Devices and Users with Junos Pulse and the Junos Pulse Mobile Security Suite Copyright 2011, Juniper Networks, Inc. Table

More information

Kaspersky Security for Mobile

Kaspersky Security for Mobile Kaspersky Security for Mobile See. Control. Protect. MOVING TARGETS Mobile devices play a key role in connectivity and productivity. But they also introduce new risks to the business: in the past 12 months

More information

[BRING YOUR OWN DEVICE POLICY]

[BRING YOUR OWN DEVICE POLICY] 2013 Orb Data Simon Barnes [BRING YOUR OWN DEVICE POLICY] This document specifies a sample BYOD policy for use with the Orb Data SaaS MDM service Contents 1 ACCEPTABLE USE... 3 1.1 GENERAL RULES... 3 2

More information

6 Things To Think About Before Implementing BYOD

6 Things To Think About Before Implementing BYOD 6 Things To Think About Before Implementing BYOD Kimber Spradlin, CISA, CISSP 2012 IBM Corporation Mobile Devices: Unique Management & Security Challenges Mobile devices are shared more often Mobile devices

More information

Kaspersky Security for Mobile Administrator's Guide

Kaspersky Security for Mobile Administrator's Guide Kaspersky Security for Mobile Administrator's Guide APPLICATION VERSION: 10.0 SERVICE PACK 1 Dear User, Thank you for choosing our product. We hope that you will find this documentation useful and that

More information

BYOD: End-to-End Security

BYOD: End-to-End Security BYOD: End-to-End Security Alen Lo MBA(CUHK), BSc(HKU), CISA, CCP, CISSP, CISM, CEH IRCA Certified ISMS Lead Auditor, itsmf ISO 20000 Auditor Principal Consultant i-totalsecurity Consulting Limited alenlo@n2nsecurity.com

More information

SOMITS is located in the 1648 Pierce Drive School of Medicine Building, Suite AB51.

SOMITS is located in the 1648 Pierce Drive School of Medicine Building, Suite AB51. School of Medicine Information Technology Services All newly enrolled School of Medicine students are encouraged to visit the School of Medicine s IT office before orientation to obtain help configuring

More information

Mobile Security: Controlling Growing Threats with Mobile Device Management

Mobile Security: Controlling Growing Threats with Mobile Device Management Mobile Security: Controlling Growing Threats with Mobile Device Management As the use of mobile devices continues to grow, so do mobile security threats. Most people use their mobile devices for both work

More information

Frequently Asked Questions & Answers: Bring Your Own Device (BYOD) Policy

Frequently Asked Questions & Answers: Bring Your Own Device (BYOD) Policy Frequently Asked Questions & Answers: Bring Your Own Device (BYOD) Policy Converting a Device Whose phones will be wiped on Wednesday, January 30? If you continue to have a company-paid phone, you are

More information

Bring Your Own Device. Individual Liable User Policy Considerations

Bring Your Own Device. Individual Liable User Policy Considerations Bring Your Own Device Individual Liable User Contents Introduction 3 Policy Document Objectives & Legal Disclaimer 3 Eligibility Considerations 4 Reimbursement Considerations 4 Security Considerations

More information

Symantec Mobile Management 7.1

Symantec Mobile Management 7.1 Scalable, secure, and integrated device management for healthcare Data Sheet: Industry Perspectives Healthcare Overview The rapid proliferation of mobile devices in the workplace is outpacing that of any

More information

BlackBerry Enterprise Service 10. Secure Work Space for ios and Android Version: 10.1.1. Security Note

BlackBerry Enterprise Service 10. Secure Work Space for ios and Android Version: 10.1.1. Security Note BlackBerry Enterprise Service 10 Secure Work Space for ios and Android Version: 10.1.1 Security Note Published: 2013-06-21 SWD-20130621110651069 Contents 1 About this guide...4 2 What is BlackBerry Enterprise

More information

Good for Enterprise Good Dynamics

Good for Enterprise Good Dynamics Good for Enterprise Good Dynamics What are Good for Enterprise and Good Dynamics? 2012 Good Technology, Inc. All Rights Reserved. 2 Good is far more than just MDM Good delivers greater value and productivity

More information

Windows Phone 8.1 Mobile Device Management Overview

Windows Phone 8.1 Mobile Device Management Overview Windows Phone 8.1 Mobile Device Management Overview Published April 2014 Executive summary Most organizations are aware that they need to secure corporate data and minimize risks if mobile devices are

More information

Symantec Mobile Management 7.2

Symantec Mobile Management 7.2 Scalable, secure, and integrated device management Data Sheet: Endpoint Management and Mobility Overview The rapid proliferation of mobile devices in the workplace is outpacing that of any previous technology

More information

THE ENTERPRISE MOBILITY POLICY GUIDEBOOK

THE ENTERPRISE MOBILITY POLICY GUIDEBOOK THE ENTERPRISE MOBILITY POLICY GUIDEBOOK October 2010 Edition 2 About This Guidebook Research from Strategy Analytics shows that over 90% of organizations now have employees using smartphones within their

More information

Empowering BYOD and Mobile Security in the Enterprise. Jeff Baum, APAC Managing Director

Empowering BYOD and Mobile Security in the Enterprise. Jeff Baum, APAC Managing Director Empowering BYOD and Mobile Security in the Enterprise Jeff Baum, APAC Managing Director Growth of Mobile Mobile worker population will reach 1.3 Billion in 2015 Source: IDC Worldwide Mobile Worker Population

More information

MOBILE DEVICE MANAGEMENT (MDM)

MOBILE DEVICE MANAGEMENT (MDM) PRODUCT DESCRIPTION Product Number: 0.0.0 MOBILE DEVICE MANAGEMENT (MDM) Effective Date: Month 00, 0000 Revision Date: Month 00, 0000 Version: 0.0.0 Product Owner: Product Owner s Name Product Manager:

More information

Mobile Device Management for CFAES

Mobile Device Management for CFAES Mobile Device Management for CFAES What is Mobile Device Management? As smartphones and other mobile computing devices grow in popularity, management challenges related to device and data security are

More information

Security. Mobile Device FOR. by Rich Campagna, Subbu Iyer, and Ashwin Krishnan. John Wiley & Sons, Inc. Foreword by Mark Bauhaus.

Security. Mobile Device FOR. by Rich Campagna, Subbu Iyer, and Ashwin Krishnan. John Wiley & Sons, Inc. Foreword by Mark Bauhaus. Mobile Device Security FOR by Rich Campagna, Subbu Iyer, and Ashwin Krishnan Foreword by Mark Bauhaus Executive Vice President, Device and Network Systems Business Group, Juniper Networks WILEY John Wiley

More information

Two Factor Authentication (TFA; 2FA) is a security process in which two methods of authentication are used to verify who you are.

Two Factor Authentication (TFA; 2FA) is a security process in which two methods of authentication are used to verify who you are. Two Factor Authentication Two Factor Authentication (TFA; 2FA) is a security process in which two methods of authentication are used to verify who you are. For example, one method currently utilized within

More information

Mobile Security. Policies, Standards, Frameworks, Guidelines

Mobile Security. Policies, Standards, Frameworks, Guidelines Mobile Security Policies, Standards, Frameworks, Guidelines Guidelines for Managing and Securing Mobile Devices in the Enterprise (SP 800-124 Rev. 1) http://csrc.nist.gov/publications/drafts/800-124r1/draft_sp800-124-rev1.pdf

More information

Exchange ActiveSync (EAS)

Exchange ActiveSync (EAS) Exchange ActiveSync (EAS) EAS allows for the synchronization of email, contacts, calendar, tasks and notes from an Exchange email server to a mobile device. Configuring and Connecting ios devices (iphone,

More information

GO!Enterprise MDM Device Application User Guide Installation and Configuration for ios with TouchDown

GO!Enterprise MDM Device Application User Guide Installation and Configuration for ios with TouchDown GO!Enterprise MDM Device Application User Guide Installation and Configuration for ios with TouchDown GO!Enterprise MDM for ios Devices, Version 3.x GO!Enterprise MDM for ios with TouchDown 1 Table of

More information

03/06/2014. Bring Your Own Device: A Framework for Audit. Acknowledgement

03/06/2014. Bring Your Own Device: A Framework for Audit. Acknowledgement Bring Your Own Device: A Framework for Audit Emily A Knopp, CPA, CISA Audit Director Angelo State University, Member of Texas Tech University System March 6, 2014 Texas Association of College of University

More information

Auditing the Security and Management of Smart Devices. ISACA Dallas Meeting February 13, 2014

Auditing the Security and Management of Smart Devices. ISACA Dallas Meeting February 13, 2014 Securely Manage your devices, applications and data. Deploy your corporate policies on smart devices. Comply with Regulatory Laws. Auditing the Security and Management of Smart Devices ISACA Dallas Meeting

More information

10 best practice suggestions for common smartphone threats

10 best practice suggestions for common smartphone threats 10 best practice suggestions for common smartphone threats Jeff R Fawcett Dell SecureWorks Security Practice Executive M Brandon Swain Dell SecureWorks Security Practice Executive When using your Bluetooth

More information

Bell Mobile Device Management (MDM)

Bell Mobile Device Management (MDM) Bell MDM Technical FAQs 1 Bell Mobile Device Management (MDM) Frequently Asked Questions INTRODUCTION Bell Mobile Device Management provides business customers an all in one device administration tool

More information

Symantec Mobile Management 7.1

Symantec Mobile Management 7.1 Scalable, secure, and integrated device management Data Sheet: Endpoint Management and Mobility Overview The rapid proliferation of mobile devices in the workplace is outpacing that of any previous technology,

More information

Emerging threats for the healthcare industry: The BYOD. By Luca Sambucci www.deepsecurity.us

Emerging threats for the healthcare industry: The BYOD. By Luca Sambucci www.deepsecurity.us Emerging threats for the healthcare industry: The BYOD Revolution By Luca Sambucci www.deepsecurity.us Copyright 2013 Emerging threats for the healthcare industry: The BYOD REVOLUTION Copyright 2013 Luca

More information

LabTech Mobile Device Management Overview

LabTech Mobile Device Management Overview You are here: Using LabTech > Mobile Device Management > Mobile Device Management Overview LabTech Mobile Device Management Overview Features LabTech mobile device management (MDM) is a fully integrated

More information

Sophos Mobile Control Technical guide

Sophos Mobile Control Technical guide Sophos Mobile Control Technical guide Product version: 2 Document date: December 2011 Contents 1. About Sophos Mobile Control... 3 2. Integration... 4 3. Architecture... 6 4. Workflow... 12 5. Directory

More information

Thanks for joining We ll start at 10am

Thanks for joining We ll start at 10am Thanks for joining We ll start at 10am Mobile Device Management Learn the basics to build your MDM Strategy Mobile Device Management Learn the basics to build your MDM Strategy Poll Question #1 3 of 39

More information

Embracing BYOD. Without Compromising Security or Compliance. Sheldon Hebert SVP Enterprise Accounts, Fixmo. Sheldon.Hebert@fixmo.

Embracing BYOD. Without Compromising Security or Compliance. Sheldon Hebert SVP Enterprise Accounts, Fixmo. Sheldon.Hebert@fixmo. Embracing BYOD Without Compromising Security or Compliance The Mobile Risk Management Company Sheldon Hebert SVP Enterprise Accounts, Fixmo Sheldon.Hebert@fixmo.com New Realities of Enterprise Mobility

More information

Mobile Device Management

Mobile Device Management 1. Introduction Mobile Device Management This document introduces security risks with mobile devices, guidelines for managing the security of mobile devices in the Enterprise, strategies for mitigating

More information

Symantec Mobile Management Suite

Symantec Mobile Management Suite Symantec Mobile Management Suite One Solution For All Enterprise Mobility Needs Data Sheet: Mobile Security and Management Introduction Most enterprises have multiple mobile initiatives spread across the

More information

Mobile Security Standard

Mobile Security Standard Mobile Security Standard Title Mobile Security Standard Mobile Device Security Category Version: 18/07/2013 PUBLISHED Author:, IT Services Contact: itsecurity@contacts.bham.ac.uk Mobile Security Standard

More information

Symantec Mobile Management for Configuration Manager 7.2

Symantec Mobile Management for Configuration Manager 7.2 Symantec Mobile Management for Configuration Manager 7.2 Scalable, Secure, and Integrated Device Management Data Sheet: Endpoint Management and Mobility Overview The rapid proliferation of mobile devices

More information

SANS Mobility/BYOD Security Survey

SANS Mobility/BYOD Security Survey Sponsored by Bradford Networks, MobileIron, and HP Enterprise Security Products SANS Mobility/BYOD Security Survey March 2012 A SANS Whitepaper Written by: Kevin Johnson Advisor: Barbara L. Filkins Survey

More information

Kony Mobile Application Management (MAM)

Kony Mobile Application Management (MAM) Kony Mobile Application Management (MAM) Kony s Secure Mobile Application Management Feature Brief Contents What is Mobile Application Management? 3 Kony Mobile Application Management Solution Overview

More information

Feature List for Kaspersky Security for Mobile

Feature List for Kaspersky Security for Mobile Feature List for Kaspersky Security for Mobile Contents Overview... 2 Simplified Centralized Deployment... 2 Mobile Anti-Malware... 3 Anti-Theft / Content Security... Error! Bookmark not defined. Compliance

More information

MOBILITY & INTERCONNECTIVITY. Features SECURITY OF INFORMATION TECHNOLOGIES

MOBILITY & INTERCONNECTIVITY. Features SECURITY OF INFORMATION TECHNOLOGIES MOBILITY & INTERCONNECTIVITY Features SECURITY OF INFORMATION TECHNOLOGIES Frequent changes to the structure of enterprise workforces mean that many are moving away from the traditional model of a single

More information

Managing ios Devices. Andrew Wellington Division of Information The Australian National University XW11

Managing ios Devices. Andrew Wellington Division of Information The Australian National University XW11 Managing ios Devices Andrew Wellington Division of Information The Australian National University About Me Mac OS X Systems Administrator Division of Information (Central IT) Mostly manage servers (about

More information

Guidelines. I. Purpose. A. Ownership and Responsibilities

Guidelines. I. Purpose. A. Ownership and Responsibilities MDM Guidelines I. Purpose The purpose of these guidelines is to establish mobile device management standards for securing college owned mobile devices. College owned devices are defined as any smart device

More information

The Enterprise Mobility Policy Guidebook

The Enterprise Mobility Policy Guidebook + 1 The Enterprise Mobility Policy Guidebook April 2012 Edition + About This Guidebook 2 Research from market research firm Strategy Analytics shows that over 90% of organizations now have employees using

More information

Bring Your Own Device (BYOD) and Mobile Device Management. tekniqueit.com

Bring Your Own Device (BYOD) and Mobile Device Management. tekniqueit.com Bring Your Own Device (BYOD) and Mobile Device Management tekniqueit.com Bring Your Own Device (BYOD) and Mobile Device Management People are starting to expect the ability to connect to public networks

More information

INCIDENT RESPONSE CHECKLIST

INCIDENT RESPONSE CHECKLIST INCIDENT RESPONSE CHECKLIST The purpose of this checklist is to provide clients of Kivu Consulting, Inc. with guidance in the initial stages of an actual or possible data breach. Clients are encouraged

More information

2/23/2013 BY VORAPOJ LOOKMAIPUN CISA, CISM, CRISC, CISSP VORAPOJ.L@G-ABLE.COM. Agenda. Security Cases What is BYOD Best Practice Case Study

2/23/2013 BY VORAPOJ LOOKMAIPUN CISA, CISM, CRISC, CISSP VORAPOJ.L@G-ABLE.COM. Agenda. Security Cases What is BYOD Best Practice Case Study BY VORAPOJ LOOKMAIPUN CISA, CISM, CRISC, CISSP VORAPOJ.L@G-ABLE.COM Agenda Security Cases What is BYOD Best Practice Case Study 1 Zeus Botnet designed for Financial Crime Compose of Zeus Builder Create

More information

Bring Your Own Device (BYOD) and Mobile Device Management. www.cognoscape.com

Bring Your Own Device (BYOD) and Mobile Device Management. www.cognoscape.com Bring Your Own Device (BYOD) and Mobile Device Management www.cognoscape.com Bring Your Own Device (BYOD) and Mobile Device Management People are starting to expect the ability to connect to public networks

More information

How to Secure Your Environment

How to Secure Your Environment End Point Security How to Secure Your Environment Learning Objectives Define Endpoint Security Describe most common endpoints of data leakage Identify most common security gaps Preview solutions to bridge

More information

The ForeScout Difference

The ForeScout Difference The ForeScout Difference Mobile Device Management (MDM) can help IT security managers secure mobile and the sensitive corporate data that is frequently stored on such. However, ForeScout delivers a complete

More information

Mobile Device Strategy

Mobile Device Strategy Mobile Device Strategy Technology Experience Bulletin, TEB: 2012-01 Mobile Device Strategy Two years ago, the Administrative Office of Pennsylvania Courts (AOPC) standard mobile phone was the Blackberry.

More information

Mobile Workforce. Connect, Protect, and Manage Mobile Devices and Users with Junos Pulse and the Junos Pulse Mobile Security Suite.

Mobile Workforce. Connect, Protect, and Manage Mobile Devices and Users with Junos Pulse and the Junos Pulse Mobile Security Suite. White Paper Securing Today s Mobile Workforce Connect, Protect, and Manage Mobile Devices and Users with Junos Pulse and the Junos Pulse Mobile Security Suite Copyright 2012, Juniper Networks, Inc. 1 Table

More information

{ipad Security} for K-12. Understanding & Mitigating Risk. plantemoran.com

{ipad Security} for K-12. Understanding & Mitigating Risk. plantemoran.com {ipad Security} plantemoran.com for K-12 Understanding & Mitigating Risk Plante Moran The ipad is in K-12. Since its debut in April 2010, the ipad has quickly become the most popular tablet, outselling

More information

Securely Yours LLC IT Hot Topics. Sajay Rai, CPA, CISSP, CISM sajayrai@securelyyoursllc.com

Securely Yours LLC IT Hot Topics. Sajay Rai, CPA, CISSP, CISM sajayrai@securelyyoursllc.com Securely Yours LLC IT Hot Topics Sajay Rai, CPA, CISSP, CISM sajayrai@securelyyoursllc.com Contents Background Top Security Topics What auditors must know? What auditors must do? Next Steps [Image Info]

More information

Trust Digital Best Practices

Trust Digital Best Practices > ARMING IT AGAINST SMARTPHONE THREATS Trust Digital Best Practices April 2009 The information contained herein is subject to change at any time, and Trust Digital makes no warranties, either express or

More information

Securing Patient Data in Today s Mobilized Healthcare Industry. A Good Technology Whitepaper

Securing Patient Data in Today s Mobilized Healthcare Industry. A Good Technology Whitepaper Securing Patient Data in Today s Mobilized Healthcare Industry Securing Patient Data in Today s Mobilized Healthcare Industry 866-7-BE-GOOD good.com 2 Contents Executive Summary The Role of Smartphones

More information

Securing Corporate Email on Personal Mobile Devices

Securing Corporate Email on Personal Mobile Devices Securing Corporate Email on Personal Mobile Devices Table of Contents The Impact of Personal Mobile Devices on Corporate Security... 3 Introducing LetMobile Secure Mobile Email... 3 Solution Architecture...

More information

Deploying iphone and ipad Mobile Device Management

Deploying iphone and ipad Mobile Device Management Deploying iphone and ipad Mobile Device Management ios supports Mobile Device Management (MDM), giving businesses the ability to manage scaled deployments of iphone and ipad across their organizations.

More information

BYOD Policy for [AGENCY]

BYOD Policy for [AGENCY] BYOD Policy for [AGENCY] This document provides policies, standards, and rules of behavior for the use of smartphones, tablets and/or other devices ( Device ) owned by [AGENCY] employees personally (herein

More information

Guideline on Safe BYOD Management

Guideline on Safe BYOD Management CMSGu2014-01 Mauritian Computer Emergency Response Team CERT-MU SECURITY GUIDELINE 2011-02 Enhancing Cyber Security in Mauritius Guideline on Safe BYOD Management National Computer Board Mauritius Version

More information

Managing and Securing the Mobile Device Invasion. 2012 IBM Corporation

Managing and Securing the Mobile Device Invasion. 2012 IBM Corporation Managing and Securing the Mobile Device Invasion 2012 IBM Corporation Please Note: IBM s statements regarding its plans, directions, and intent are subject to change or withdrawal without notice at IBM

More information

Bring Your Own Device (BYOD) and Mobile Device Management

Bring Your Own Device (BYOD) and Mobile Device Management Bring Your Own Device (BYOD) and Mobile Device Management Intivix.com (415) 543 1033 PROFESSIONAL IT SERVICES FOR BUSINESSES OF ALL SHAPES AND SIZES People are starting to expect the ability to connect

More information

Mobile Device Management Glossary. www.maas360.com

Mobile Device Management Glossary. www.maas360.com Mobile Device Management Glossary www.maas360.com Copyright 2014 Fiberlink Communications Corporation. All rights reserved. This document contains proprietary and confidential information of Fiberlink,

More information

BRING YOUR OWN DEVICE (BYOD) AND MOBILE DEVICE MANAGEMENT

BRING YOUR OWN DEVICE (BYOD) AND MOBILE DEVICE MANAGEMENT BRING YOUR OWN DEVICE (BYOD) AND MOBILE DEVICE MANAGEMENT www.intivix.com (415) 543 1033 HELP TEAM MEMBERS TO COLLABORATE MORE EASILY FROM ANYWHERE. People are starting to expect the ability to connect

More information

GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android

GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android GO!Enterprise MDM for Android, Version 3.x GO!Enterprise MDM for Android 1 Table of Contents GO!Enterprise MDM

More information

BYOD: Should Convenience Trump Security? Francis Tam, Partner Kevin Villanueva, Senior Manager

BYOD: Should Convenience Trump Security? Francis Tam, Partner Kevin Villanueva, Senior Manager BYOD: Should Convenience Trump Security? Francis Tam, Partner Kevin Villanueva, Senior Manager 1 AGENDA Mobile Explosion Mobile Trends BYOD Benefits, Challenges and Threats BYOD Security BYOD Strategy

More information

BYOD: BRING YOUR OWN DEVICE.

BYOD: BRING YOUR OWN DEVICE. white paper BYOD: BRING YOUR OWN DEVICE. On-boarding and Securing Devices in Your Corporate Network Preparing Your Network to Meet Device Demand The proliferation of smartphones and tablets brings increased

More information

Bring Your Own Device:

Bring Your Own Device: Bring Your Own Device: Finding the perfect balance between Security, Performance, Flexibility & Manageability SECURELINK WHITEPAPER 2012 By Frank Staut Management summary This white paper discusses some

More information

Corporate Mobile Policy Template

Corporate Mobile Policy Template Updated July 2011 Three major changes have occurred over the past 18 months that require updates to your organization s mobile policy. These changes include widespread adoption of tablet devices, changes

More information

Certified Secure Computer User

Certified Secure Computer User Certified Secure Computer User Course Outline Module 01: Foundations of Security Essential Terminologies Computer Security Why Security? Potential Losses Due to Security Attacks Elements of Security The

More information

esarinformation Systems Simplifying your Technology Mobile Applications Development Profile

esarinformation Systems Simplifying your Technology Mobile Applications Development Profile esarinformation Systems Simplifying your Technology Mobile Applications Development Profile Why Mobile Application Custom mobile application with a unique touch is much needed to boost the functions and

More information

GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android with TouchDown

GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android with TouchDown GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android with TouchDown GO!Enterprise MDM for Android, Version 3.x GO!Enterprise MDM for Android with TouchDown 1 Table

More information

Answers to these questions will determine which mobile device types and operating systems can be allowed to access enterprise data.

Answers to these questions will determine which mobile device types and operating systems can be allowed to access enterprise data. Mobility options and landscapes are evolving quickly for the corporate enterprise. Mobile platform providers such as Apple, Google and Microsoft, and leading device hardware vendors are constantly updating

More information

ForeScout MDM Enterprise

ForeScout MDM Enterprise Highlights Features Automated real-time detection of mobile Seamless enrollment & installation of MDM agents on unmanaged Policy-based blocking of unauthorized Identify corporate vs. personal Identify

More information

Consumerization. Managing the BYOD trend successfully. Harish Krishnan, General Manager, Wipro Mobility Solutions WWW.WIPRO.COM

Consumerization. Managing the BYOD trend successfully. Harish Krishnan, General Manager, Wipro Mobility Solutions WWW.WIPRO.COM Consumerization Managing the BYOD trend successfully WWW.WIPRO.COM Harish Krishnan, General Manager, Wipro Mobility Solutions Employees dictate IT Enterprises across the world are giving in to the Consumerization

More information

Codeproof Mobile Security & SaaS MDM Platform

Codeproof Mobile Security & SaaS MDM Platform Codeproof Mobile Security & SaaS MDM Platform info@codeproof.com https://codeproof.com Mobile devices have been transformed into multi-faceted, multi-tasking, multimedia tools for personal expression,

More information