There is no question, of course, that the phones used by employees pose a danger to company data. MDM (Mobile Device Management) solutions make it possible to quickly apply security rules to an entire mobile fleet.
Adjusting security settings for a handful of mobile devices is one thing. But when it comes to repeating the operation on dozens of smartphones, a little help is welcome. MDM solutions make it easier for CIOs. The settings are defined from a centralized console and then applied en bloc to the entire mobile fleet. Here are 5 things to keep in mind.
1. Automate updates
This is the very basis of security: company terminals must have an up-to-date version of Android and applications. With MDM, patch installation can be controlled and widespread, preventing some devices from falling through the cracks. Schedule these downloads during low activity hours to avoid saturating the corporate network.
2. Limit app downloads
Given the number of threats to Android Play Store applications, it is better to establish safeguards. An MDM makes it possible to prevent the installation of applications that are not essential to the accomplishment of employee missions. It is thus possible to reduce the scope of action of users to a few apps selected by the IT department or to establish blacklists of prohibited tools.
3. Compartmentalize professional data and personal files
When you entrust a mobile to an employee, it is difficult to avoid interference between personal and professional life. To avoid compromising the company’s information system, use MDM to compartmentalize uses by creating separate and watertight use profiles. You are thus assured that the operations carried out in the personal space will have no effect on the company’s servers.
4. Force password renewal
MDM allows you to put a little order and rigor in the management of passwords that protect the smartphones of your teams. Set a strict policy that will require users to change their passcode at least once a month. In addition, define rules (length, type of characters, etc.) for the creation of passwords in order to prohibit combinations that are easy to guess.
5. Encrypt sensitive data
Certain data has a high degree of confidentiality and must be the subject of special protection measures. An MDM authorizes global or targeted encryption of the content of the fleet’s mobiles. This precaution guarantees the integrity of key company information in the event of loss or theft of a terminal.