According to Morgan Stanley,
mobile device sales exceed personal computer sales. Unfortunately, company
policies regarding mobile device security lag behind.
Following is a list of
recommendations to help companies catch up:
Secure All Mobile
Devices – A report issued by McAfee
and Carnegie Mellon has reported that four out of ten organizations have had
mobile devices stolen or lost. Given this high incidence, the first and most
obvious line of defense is to alert employees of the need for vigilance. Begin
by communicating simple instructions: don't leave your mobile device
unattended, don't place your mobile device in plain view on a table and store
your mobile device in a secure place.
Establish a Consistent
Company Policy – Take time to draft
and disseminate a consistent policy to all staff members. Update this policy as
technology advances.
Require employees to use
strong passwords that are unique to their mobile devices. Passwords should be
changed on a frequent basis. Employees should be discouraged from visiting
non-work sites with their work devices, as well as adding non-work related
apps. Downloading apps can introduce malware.
Devices should be backed
up regularly in case of loss or theft. Discourage employees from storing
sensitive information on mobile devices.
Employees should be given
a clear, easy-to-follow protocol in the event of a lost or stolen mobile
device. Any lost or stolen device should be wiped clean of data immediately. Of
course, your ability to do so will require that a mobile device security
package had been put in place. Speak with your technology provider for a
solution.
BYOD – With an increasing number of companies encouraging
employees to bring their own devices to work, mobile device security is
becoming an even greater challenge. Since corporate IT has less control in this
instance, there is a greater need to communicate clear policies and
expectations to employees prior to an event.
Cybersecurity Insurance – Even the most fastidious mobile device security
plan cannot fully protect a firm from a mobile device security breach. Because
a breach can compromise personal information, it can result in legal exposure,
extensive discovery and burdensome financial liability. Cybersecurity insurance
will help to transfer a company's risk in the case of a mobile device security
breach.=
The Mechanic Group is
the leading MGA writer of private security, investigation, alarm and background
screening insurance. Visit The Mechanic Group at www.mechanicgroup.com.