Find Training

Training Libraries

Articles

Secure Mobile Phones And Devices

Everyone either possesses or desires a smartphone or mobile device, as it lends a portability and remote access far superior to workstations. Even laptops take a back seat to the size and ease of today’s phones. As data centers begin to utilize mobile devices, and organizations allow their use in the work place, security measures need to be employed to insure the safety of data.

There are very easy procedures that can be taken, but most people lack the IT intelligence, awareness, and knowledge necessary to protect their smartphones, related mobile devices, and critical data. Smartphone security is very important.

One of the easiest methods to follow - if you receive a shady or unrecognizable email, leave it alone. Do not open it. Just like workstations, there could be a harmful payload attached. A Pandora’s Box of trouble could be avoided very easily. The same applies for anyone you do not recognize as the sender.

Leaving the Bluetooth option on at all times is an open invitation for disaster. Some software applications can and will install themselves or other applications without your knowledge or permission. Leaving Bluetooth on while you continue your day also allows others in the vicinity to ‘see’ your device. With the right software and hacking ability anyone nearby can access your device and steal your information.

If you use your device for work related issues, your data center should work with you in using password locks, encryption and authentication techniques, and wiping schemes. This layer of protection goes a long way compared to not having any protection at all. If your device is stolen, lost, or misplaced, your data center should have security compliances to retrieve the device or keep the information on the device from being accessed.

Keeping up to date on the latest hacking techniques should be administered in the form of training courses, as well as security updates that should be added to the device as soon as possible, whether the device is local or in the field somewhere. Someone on staff should be well trained and certified as an information security expert. CISSP training courses have these and many more areas that should be secured, including telecommunications, networks, environmental security, access control, disaster recovery, application development, business continuity, and more. K Alliance is a leading source of courses such as CISSP training and certification training in many other IT areas and disciplines.

If employees are allowed to use mobile devices in the workplace or for work related issues, data centers should outline the purpose and uses of the device. Protection should be in place to prohibit using the device to access not safe for work locations. It may be Big Brother watching, but as the saying goes, an ounce of prevention is worth a pound of cure. Before a software solution is used to protect the device it should be researched to determine if it is strong enough to perform the task. If the security application does not meet certain criteria, do not use it. Locate another source. IT centers will also have to be up to speed in providing technical support for the various devices that will be authorized for workplace utilization.

While judging the mobile devices you may or may not use, try to employ devices that meet government and federal defense security standards. If it is good for them, it is good for you.

Everyone uses hotspots and Wi-Fi to connect wirelessly. Public wireless hotspots are notorious for lacking security. A smart hacker can tap into your wireless transmissions and steal data. Your log on information, banking data, financials, email information, and more becomes very public knowledge. Data encryption and encryption solutions becomes your friend. Even better, refrain from using public wireless spots.

Smartphones and mobile devices, and the locations they access should have antivirus solutions and firewalls already installed as a layer of security and protection. All of this only sounds like overkill until a breach or breached situation takes place. That’s when questions fly about why adequate or better protections were not in place to keep the intrusion from happening.

When putting security measures in place, do not allow users the ability to modify the procedures or provide them administration rights. If a user can, they will adjust the procedures or disallow them altogether. Security updates should occur over the air only, and by qualified personnel only. User applications should be on an approved list, not matter how much users complain about the desire to install their own software or have the capability to delete software they don’t want. Security controls are in place for a reason.

Thinking it is safe to use unprotected devices is a huge mistake. It isn’t the many times a good situation or condition is remembered. It is the one time something bad or horrific occurs, that is on the minds of everyone involved. Be prepared.

About Us: Next Generation Training allocates quality IT resources for all individuals and organizations in order to enhance their abilities. Online training provides anytime, around the clock access to the lessons and training, allowing the freedom to self-study whenever your schedule permits. CBT training gives the user a study course that is as portable as their laptop. Next Generation Training is the location to reinforce your technical skills.