I don’t think anyone will argue that mobile isn’t hot. Never before have we seen a technology where consumers are driving it so aggressively into the enterprise. Organizations are being forced to react and develop mobile security strategies to support the demands of end users. The difference in this case may be that consumers are not only demanding support for mobile device access, but they are also demonstrating a willingness to supply their own devices, spurring the bring-your-own-device (BYOD) movement.

So just how big is this trend? According to eMarketer, there will more than 2 billion smartphones worldwide in 2016, and Gartner estimated that mobile downloads will rise to 268 billion by 2017.

Mobile Has Changed How We Think and Work

With the proliferation of mobile into our personal and professional lives, we are seeing changes in our expectations of how we interact with others, whether it be individuals or organizations. We expect to be able to communicate with people regardless of location, and we are demanding access to information and resources in the same manner. Whether it is a restaurant reservation, tickets to an event, product availability, shipment status or the latest sales figures, we want to be able to access the information at any given moment.

Mobile has put the expectation of on-demand data into our heads. In our professional lives, we expect to have access to the corporate resources we depend on whether we are in the office, on the road, out to dinner, on vacation or even flying. We have hand-held mobile devices capable of accessing enterprise resources and expect the companies we work for to support that access.

Mobile is redefining where, when and how we do work and has changed how we think about “everywhere.” It used to be that “everywhere” was the office, our home or on the road. Now, “everywhere” is the car, a restaurant, the pool, the dinner table, the nightstand and even into the bathroom. There is no place that these mobile devices don’t go with us.

Read the white paper now: Secure the Mobile Enterprise

Mobile Security for the Enterprise

Companies want to provide the mobile access being demanded, but mobile devices bring with them a whole host of issues that we haven’t seen before. The size and portability of them make them easy candidates to be lost or stolen. The BYOD angle creates a new situation for the enterprise: a situation in which IT no longer owns, controls and configures the device. With mobile devices, apps can be added at little to no cost and with little to no effort. Operating system updates are widely promoted, along with the new features that come with it, resulting in end users updating within hours of the version release. With the end user controlling the device and eager to make updates, IT is left trying to stay abreast of the changes and how they might impact risk associated with mobile device access.

The immediate and most obvious thought is to deploy some measure of security to protect the device in the event it is lost or stolen. In fact, when IBM sponsored a study by ISMG, “The State of Mobile Security Maturity,” 57 percent of companies stated device security was a primary factor inhibiting them from a full deployment of a mobile workforce. To address this issue, companies have flocked to mobile device management (MDM) solutions. MDM allows them to identify the devices and users, protect the device and put measures in place that would enable them to wipe the device clean in the event it is lost or stolen. The good news is that this is a great start for deploying a mobile security strategy. The bad news is that while protecting the device is a great start, this is where many of them stop. Unfortunately, this step is just the start of a comprehensive mobile security strategy. If all this talk about mobile security is new to you, take a look at this short video which explains how mobile security works.

Protecting Data Along With the Device

Enterprises need to think beyond just the physical device. They need to think about how they will secure the content created or stored there and how the individual will use the device to collaborate with others. Do you want employees to intermingle their personal and business content, or do you want to separate the two in hopes of reducing the risk to the enterprise? Can they copy, paste and email content from the device to others via unsecured networks, or will you restrict how they share the content?

Then there’s the question of safeguarding the applications and data. What applications will be on the device, and how will users obtain those applications? Will they download from a public app store, or will you provide them with a private app store? Will you develop your own applications or distribute applications created by others? Regardless of the source, how will you test applications to ensure they are secure and are not providing a back door for hackers to deploy malware onto the device and into your environment? A recent case study on application security reveals significant savings related to app testing. The organization indicated it had reduced the cost of correcting application issues by as much as 95 times by testing earlier and more often in the development process. If you develop your own applications, can you protect the intellectual property that has been put into the app? Can you be sure that hackers can’t reverse engineer your application, inserting malware into it and preying on unsuspecting end users?

Finally, how will you manage access and identify fraud? What steps will you take to identify users and devices that are attempting to access your enterprise resources? In the world of laptops and computers, each device had a unique signature that allowed you to identify it. Mobile devices don’t have that unique identifier. It is important that you are able to look at the characteristics of the access in context and assign a risk profile. Maybe it’s a typical transaction from an end user, but maybe the time of day, resources requested or actions being performed are not normal. Are your systems prepared to identify these variations and act on them? Can you identify a jailbroken or rooted device and deny access? Being able to view transactions in context is critical in terms of managing access and reducing fraud risks.

More Information

A recent Ponemon Institute study, “The State of Mobile Application Insecurity,” found that while many companies have started deploying mobile security strategies, few are doing everything they need to do to secure the enterprise. Mobile security is a new challenge, and enterprises are still trying to figure out how best to develop and deploy their strategy. Mobile access is bringing thousands of devices and connections into the enterprise. I’ve touched on key things to consider, but if you are looking for more details, check out the white paper “Secure the Mobile Enterprise” for more details on the areas in which you need to focus as well as solutions for addressing those challenges.

Watch the on-demand webinar: The 2015 Mobile Threat Report – The Rise of Mobile Malware

More from Endpoint

Self-Checkout This Discord C2

This post was made possible through the contributions of James Kainth, Joseph Lozowski, and Philip Pedersen. In November 2022, during an incident investigation involving a self-checkout point-of-sale (POS) system in Europe, IBM Security X-Force identified a novel technique employed by an attacker to introduce a command and control (C2) channel built upon Discord channel messages. Discord is a chat, voice, and video service enabling users to join and create communities associated with their interests. While Discord and its related software…

3 Reasons to Make EDR Part of Your Incident Response Plan

As threat actors grow in number, the frequency of attacks witnessed globally will continue to rise exponentially. The numerous cases headlining the news today demonstrate that no organization is immune from the risks of a breach. What is an Incident Response Plan? Incident response (IR) refers to an organization’s approach, processes and technologies to detect and respond to cyber breaches. An IR plan specifies how cyberattacks should be identified, contained and remediated. It enables organizations to act quickly and effectively…

Deploying Security Automation to Your Endpoints

Globally, data is growing at an exponential rate. Due to factors like information explosion and the rising interconnectivity of endpoints, data growth will only become a more pressing issue. This enormous influx of data will invariably affect security teams. Faced with an enormous amount of data to sift through, analysts are feeling the crunch. Subsequently, alert fatigue is already a problem for analysts overwhelmed with security tasks. With the continued shortage of qualified staff, organizations are looking for automation to…

Threat Management and Unified Endpoint Management

The worst of the pandemic may be behind us, but we continue to be impacted by it. School-aged kids are trying to catch up academically and socially after two years of disruption. Air travel is a mess. And all businesses have seen a spike in cyberattacks. Cyber threats increased by 81% while COVID-19 was at its peak, with 79% of all organizations experiencing a loss of business operations during that time. The risk of cyberattacks increased so much that the…