Mobility has changed organizations, boosting employee satisfaction and productivity and enabling an unprecedented level of collaboration and communication. With these benefits, enterprises have faced numerous challenges and risks to corporate data. Many organizations have implemented systems to manage and secure devices and data, but as the demands of BYOD have increased, technologies evolved and risks changed, organizations have found themselves supporting too many systems.
The pace at which mobility has been changing over the past few years has forced many organizations into a “reactive” mode of managing devices individually, separate from the security strategy in place in the rest of the organization. In order to simplify, and unify, mobility management, organizations need to consider mobile security as a part of a wider security program. Following a user-centric approach to mobility management, organizations can take advantage of a single system to manage and secure devices and the data they contain.
Gartner recently released a model and toolkit designed to help organizations assess their current enterprise mobility programs from a security perspective. This self-assessment can help organizations assess their architecture and security processes, defining five levels of security in three dimensions: people, process and technology.
The dimension of people assesses the enterprise organization and culture with respect to mobile security. The dimension of process assesses the policy definition, including device management, platform, BYOD, collaboration and travel policies in terms of mobile security. The technology dimension assesses the technical policy enforcement, information containment and integration with the enterprise in terms of security (for example, achieving enterprise application single sign-on).