Businesses should also ensure that any device that hosts or sends sensitive data is equipped with up-to-date security software and patched regularly. The recent Conficker worm infected millions of PCs, and many of these systems were infected largely because they had older versions of security software installed on their network or mobile devices.
When investing in a security solution, businesses should consider a solution that is sophisticated enough to defeat not only known threats, but unknown threats as well. Businesses need to know that their critical information is safe - wherever it's used or stored. That means in laptops, desktops, mobile devices, on servers, in email, over the network, and in storage devices.
Many businesses have or are already considering endpoint virtualisation solutions. These solutions provide instant on-boarding for the full-time and casual mobile worker. Applications as needed are delivered and updated instantly, as are online and offline support and policy-driven functions. IT can enforce central policies for specific virtual applications and OS settings, while users can control their own personal system and application settings.
Education Is Key
It is also important to remember that one of the most critical elements or strategies for minimising the risk of breaches from mobile devices is a comprehensive user education program. No matter which security and back-up system is employed, the best policy is undoubtedly educating employees on the potential threats and encouraging them to take precautionary measures. This includes educating staff on specific security policies related to mobile device usage, providing training for mobile device users with simple security guidelines and protocols on reporting any lost or stolen devices, and creating security policies specifically for mobile device users, such as mandatory password protection on all devices and encrypting any sensitive data stored on the device.
Making the most of mobile devices and new communications media, such as social networking sites, can supercharge your business but it is vital to limit associated risks. By combining a comprehensive education program with an information-centric approach to security and strong security policies, you can minimise the risk of security threats to your business.
Craig Scroggie is the vice president and managing director of Symantec in the Pacific region.
