Demys&fying Mobile Device Management Challenges Indir Avdagic Director of Informa.on Security and Risk Management, SEAS
Objec&ves Our hope is that this conversa0on will get people thinking about mobile device management: Why is this important? And why is it 0me sensi0ve? How do we get there from here? What do we need to be doing? Why would you want to use MDM socware at SEAS? Why we need end- to- end mobile security management Solu0ons to monitor, control and protect across devices, apps, data and the network. Enrollment Demo and Q&A 2
Why do we need to think about this? Why can t we delay? TRENDS, RISKS & CHALLENGES
Trends: Personal Mobile Device Use 4
Risks and Challenges: An Evolving Landscape
Trends: Mobile Devices in the Workplace 6
Risks & Challenges: How do we protect Data & Iden88es? Harvard is a high- value target for many such threats 7
Risks & Challenges: How do we protect Data & Iden88es? Are Paid Apps Safer Than Free Apps? ios vs. Android Apps? 8
Risks and Challenges: What are other schools doing? Some schools are using a MDM vendor, others are leveraging resources they already own. AirWatch clients include Georgetown, Indiana University & UCLA Stanford has developed their own solu0on. Yale also offers an MDM solu0on to their customers. Harvard is BEHIND the curve
What do we need to be doing? Why should you use MDM socware? GETTING THERE FROM HERE
WHY use MDM? If you don t have a mobile strategy, you don t have a future strategy. Eric Schmidt (Google)
WHY use MDM? Allow you to use your mobile device for work purposes while making sure your data is protected. We all lose if your security is compromised. What do mobile devices bring to the table? How does the use of mobile devices ENABLE the pedagogy at Harvard? These are no longer just status symbols...they are useful devices. These are the func0ons that you want to embrace, enable, and foster How could the use of mobile devices INHIBIT the pedagogy or even HARM the school?
Security is the main reason companies hesitate to embrace mobile
Resistance I don t want to lock my phone what if I forget the code? It s my device, not Harvard s! Just treat them the same way we do laptops. Harvard Approved Vendors don t provide these services in the way we want MDM products are EXPENSIVE! We re a school, not a bank! The faculty will never go for it Lock codes are annoying! If I lock my ipad down, my kids can t use it! It s a viola&on of my privacy! I don t want Harvard to be able to track my loca8on!
How do they complicate things? CLOUD SERVICES
Mobile Device & Cloud - Security Issues Mobile Devices Bring Cloud Storage & Security Risks Mobile devices with their limited storage and compu.ng capabili.es are drivers for having services provided by Cloud Compu.ng (icloud, Dropbox, AWS ). Insecure cloud- based backup and highly confiden0al informa0on from mobile devices. icloud Use of Pages, Numbers on ipad automa0cally copies file to Apple s servers. Non- compliance with data protec0on regula0ons. Privacy and iden0fy thec case of Mat Honan, Senior writer at wired.com - whole his digital life was erased.
What DON T MDM products do? MDM products leverage the capabili0es of the na0ve device If the device doesn t handle encryp.on If the device doesn t allow pajern swipe- unlock or enable 6- digit numeric pins If the OS s error message is confusing
What does MDM NEED to do? Today s devices need a solu0on to monitor, control and protect the enterprise across devices, apps, data and the network.
What would we NEED a MDM to do? Can we do these things WITHOUT inhibi8ng the customer s use of the Device device? Usability Device protec&on and compliance Can we help our customers follow Harvard s policies for how sensi8ve informa8on is handled? Access to HU Services Same goals Are we ensuring that customers have access to the RIGHT set of services?
What would we NEED a MDM to do? Enable us to help our customers follow Harvard s and SEAS policies and standards Phased approach to implementa0on: PIN/ Password, encryp0on, locate, lock, and wipe
First Phase: Password policy, encryp&on, and locate/lock/wipe features Ensure your device is encrypted
AirWatch SAMPLE MDM PRODUCT
AirWatch End- to- End Security Solu&on Airwatch provides solu0ons to meet almost all of the above requirements. SEAS started AirWatch pilot project in February 2013 op0ons and ini0al results in end- to- end mobile security management.
AirWatch Installa&on/Enrollment Guides Installa0on and enrollment guides for ios and Android are available at SEAS ISO website: hgp://www.seas.harvard.edu/informa0on- security/mobile- device- management
DEMO AND Q & A SESSION