The utilisation of laptops, mobile phones, and tablets for remote work is increasingly prevalent. This approach offers convenience and tangible benefits to both staff and organisations. However, it is imperative that device usage is secure and safeguarded.
Establish a comprehensive plan for managing portable and personal devices. A mobile device, defined as any portable device with access to organisational data, necessitates a Mobile Device Management (MDM) plan. This plan should be interconnected with the broader security strategy and include centralised device management, formulation of rules and access policies, assurance of necessary software, and identification of devices capable of accessing organisational data, including personal or bring-your-own-devices (BYOD).
Incorporate policies and procedures for personal devices, emphasising that the organisation's decision to allow their use for work purposes is deliberate. A Bring-Your-Own-Device (BYOD) policy can be an option if organisational devices are unavailable.
Implement device security policies tailored to the nature of the work. Communicate clearly to staff the permissible activities on personal devices, ensuring alignment with the required security level. Clearly inform staff of policy expectations, integrating this information into the organisation's MDM plan.
Cover pertinent areas in the MDM plan policies for personal devices, including privacy and confidentiality, record-keeping, information destruction, and updates and security.
For work that cannot be conducted on personal devices or in the absence of suitable equipment at home, consider supplying essential items such as laptops, keyboards, mice, and monitors.
Adopt asset lifecycle management to track technology, anticipate updates, and plan for device replacement. Regularly update and patch device and system software to enhance security, considering the challenges posed by remote working.
Limit access to devices and ensure user authentication through measures like multiple-factor authentication, device encryption, single sign-on functionality, and virtual private networks with firewalls and anti-malware software.
Promote a collective responsibility for device security among staff, emphasising the importance of adhering to security measures. Support them with training and resources, ensuring they understand the significance of secure practices.
Facilitate ease of remote work to encourage adherence to security procedures. Lay a robust security foundation to enhance overall compliance.
Prepare for remote working following an incident by documenting expectations and issues in the organisation's assets management plan, MDM plan, and business continuity plan. Organisations with invested portable devices are better positioned for remote work, while those without may need to consider additional issues, such as prioritising device access and formulating BYOD policies.
To learn more about Mobile Device Management, contact Merge Communications.
Merge Communications offers Samsung KNOX Mobile Device Management. Samsung Knox makes mobile device management (MDM) easy. Knox Manage makes enterprise mobility management (EMM) easy. From an intuitive cloud-based console, IT admins can remotely manage a fleet of devices to ensure company data is protected.
Call Merge Communications today to learn more about Samsung Knox MDM solutions.