Rising To The Challenge Of A Mobile Workforce
As the commercialisation of IT continues, SoHoBlue’s Nick Morse looks at ways to improve security instead of banning devices altogether
Laying down the law
A crucial part of any policy needs to be set out around how the network is accessed. You cannot allow staff to get onto the network from random access points, all connections need to be funneled securely through one security device. You also need to be able to set different access levels. Most people do not bother to encrypt mobile devices, but when they bring them in the office they should be subject to the same control and filtering as every other piece of equipment.
Furthermore, even if you cannot ensure against a mobile device being subject to a malware attack when outside the business network, solutions can be put in place that prevent this malicious software from infiltrating the corporate network. From enterprise to SME level, systems are readily available that allow devices to be differentiated between; for example whether it is a secure device handed out by an IT department or personal mobile device. These solutions allow each device to undergo a series of scans, from various configurable checks such as looking for keyloggers to checking anti-virus signatures are up to date.
Any issues found – such as signatures being more than a month old – would mean that access levels for that device would be restricted. Effectively quarantining the device would mean that the integrity of the company’s system is preserved while at the same time the user is still able to do their job. Notification to both the system administrator and the end user would also mean that a solution could be found or the relevant device disinfected. The same applies to the application of Data Leakage Protection (DLP) where certain machines can be barred from copying material onto external drives or, for example, from printing documents.
As mobile technology continues to evolve and more and more devices flood the market, this situation is only ever going to become worse for companies. For this reason, it’s imperative that they shift their security thinking, develop new policies, and implement technologies that maintain security without hindering the anytime, anywhere access that users are increasingly demanding. Taking a measured and intelligent approach to mobile security and management, will man that your company can overcome the security challenges associated with mobility and turn your staff’s personal mobile devices into powerful business assets.
Nick Morse is Business Development Director EMEA for internet security specialist SoHoBlue.