SHARE



ABOUT THE AUTHOR


Mark Price
Mark Price is a US based principal with Valadian. He has an extensive background in telecommunications and finance.Mark is an...
Read Full Bio >>
SHARE



Mark Price | March 15, 2017 |

 
   

All Things Mobile: Managing the Shift in the Enterprise

All Things Mobile: Managing the Shift in the Enterprise Five key areas that every business should consider in developing an Enterprise Mobility Management (EMM) strategy

Five key areas that every business should consider in developing an Enterprise Mobility Management (EMM) strategy

portable Are we there yet? We've been moving towards the mobile enterprise for years, and it seems like we are just about there. In 2017, millennials already represent a third of the U.S. workforce, data shows -- and we all know how much they love their mobile devices. In a recent Gallup poll, 43% of employed Americans said they spent at least some time working remotely in 2016. And according to Cisco, by 2020, wireless and mobile device traffic will account for two-thirds of total global IP traffic.

While employees using mobile devices for work is nothing new, the risk associated with those devices has been multiplied by hundreds, or even thousands, due largely to the ever-growing number of vulnerable applications. Employee devices lie outside of a company's security perimeter (firewalls, threat management, spam filters, and other security tools), yet they grant access to some of the most sensitive information inside of a company: email, customer data, HR information, sales data, and business strategy and plans.

But Enterprise Mobility Management (EMM) isn't just about security, nor is it all about devices. Managing today's mobile enterprise requires a comprehensive strategy that is flexible enough to cover the ever-changing landscape of devices and apps while keeping enterprise data secure. Here are five key areas that every business should consider in developing an EMM strategy.

Going Beyond the Smartphone and Tablet
It's no longer enough to develop a policy that covers currently available hardware. What hardware is on the horizon? Are employees using their wearable devices for work? And if so, for what use cases?

This is uncharted territory for the majority of IT departments -- and still relatively new in general. Many of the risks related to IoT devices are just being uncovered. Authentication levels for each device need to be investigated, access restricted based on policy, and VPNs installed if possible. Cameras, voice recorders, and the default "always-on" setting on IoT devices bring up issues of privacy -- from the boardroom to the shop floor. And employees bringing their own wearables to work can be like a flashback to the early days of BYOD. Policies should cover which (if any) wearables are permissible in the workplace, how they are to be used, and what penalties will accompany violations.

Reexamining BYOD
Speaking of BYOD, it's not 2009 anymore. There was a time when everyone was doing it -- or at least thinking of doing it. Businesses could save money on devices but still expect employees to be productive outside of the office, using their own devices. What's not to love? How about outdated devices, relaxed policies and an expanding number of apps that provide access to corporate data? For many companies, the risk is simply no longer worth it. However, if you are still committed to BYOD, it's time to take a look at your policies and procedures to make sure you:

  • Ensure devices are set to automatically check for and install application and operating system updates
  • Require passwords to unlock devices
  • Can automatically wipe devices if lost, stolen, or if too many incorrect passwords are entered
  • Mandate encryption and anti-malware protection
  • Communicate and monitor blacklisted apps (specific apps and general guidelines)
Smartening Up Your Policies

The next generation of EMM will take the massive amounts of data available from users and use it to enhance their device experience -- something many of us have become accustomed to in our personal lives. Just like an employee's smartphone automatically provides traffic conditions to his weekly after-work basketball game (even if it's not in his calendar), it can also serve up the enterprise apps he needs, when he's most likely to use them.

The potential for machine learning within EMM goes beyond increasing the convenience and productivity of employees; it can also be used as a security measure. Smarter EMM policies could detect abnormal activities and potential threats. Some possible use cases include reconnaissance activities, compromised credentials, and unusual resource access or working hours.

Managing Threats for the Cloud
According to PwC's Global State of Information Security Survey 2017, 48% of IT services are delivered via the cloud. Enterprises taking advantage of the scale and computing power of the cloud can use the same capabilities to develop an innovative, centralized threat management program. One example is PwC's Secure Terrain&trade program, which uses Google's vast cloud platform to study activity across the enterprise and strategically manage cybersecurity.

Such a program would involve four steps:

  1. Real-time data analytics
  2. Assessment of impact
  3. Identification of threats
  4. Action to combat threats

The development of enterprise-wide cybersecurity is a significant task. However, as the shift to mobile increases speed and capacity, IT leadership should consider building on its current foundation with next-gen security tools.

There are also many resources built around threat awareness sharing, such as Information Sharing groups and Analysis Organizations (ISAOs). Examples include the Commonwealth of Virginia ISAO, The Legal Services ISAO, Retail Industry ISAO, The National Credit Union ISAO, and the Maritime & Port Security ISAO. We all know that cybercriminals share and network, so why not take a page from their book and exchange knowledge to help everyone understand and mitigate threats in the enterprise?

Introducing Compliance as a Company-wide Effort
Traditionally, IT has been the driving force behind EMM, but high-profile hacks are making it a priority for every C-level executive. The growth in digital traffic and mobile endpoints leaves companies open to more attacks, via more targets and approaches. Sixty-seven percent of companies included in a recent Ponemon Institute survey have experienced a breach from an employee's mobile device. With the magnitude and frequency of threats, companies can't afford to wait around. They need an effective program to secure and monitor the mobile enterprise -- or risk a costly security breach.

Securing digital data is a key initiative for many businesses this year, and they will work together to ensure EMM policies include encryption, data loss prevention, and strict security controls. With security as a shared responsibility, mobility policies can be developed to address practical use cases and companywide business needs and priorities.

"SCTC Perspectives" is written by members of the Society of Communications Technology Consultants, an international organization of independent information and communications technology professionals serving clients in all business sectors and government worldwide.

Learn more about mobility trends and technologies at Enterprise Connect 2017, March 27 to 30, in Orlando, Fla. View the Mobility track, and register now using the code NOJITTER to receive $300 off an Entire Event pass or a free Expo Plus pass.





COMMENTS



Enterprise Connect Orlando 2017
March 27-30 | Orlando, FL
Connect with the Entire Enterprise Communications & Collaboration Ecosystem


Stay Up-to-Date: Hear industry visionaries in Keynotes and General Sessions delivering the latest insight on UC, mobility, collaboration and cloud

Grow Your Network: Connect with the largest gathering of enterprise IT and business leaders and influencers

Learn From Industry Leaders: Attend a full range of Conference Sessions, Free Programs and Special Events

Evaluate All Your Options: Engage with 190+ of the leading equipment, software and service providers

Have Fun! Mingle with sponsors, exhibitors, attendees, guest speakers and industry players during evening receptions

Special Offer - Save $200 Off Advance Rates

Register now with code NOJITTEREB to save $200 Off Advance Rates or get a FREE Expo Pass!

April 5, 2017

Its no secret that the cloud offers significant benefits to enterprises - including cost reduction, scalability, higher efficiency, and more flexibility. If your phone system and contact center are

March 22, 2017

As today's competitive business environments push workforces into overdrive, many enterprises are seeking ways of streamlining workflows while optimizing productivity, business agility, and speed.

March 8, 2017

Enterprise IT's ability to innovate is critical to the success of the business -- 80% of CIOs agree. But the CIO role has never been more challenging than it is today, with rising operational respo

March 23, 2017
Tim Banting, of Current Analysis, gives us a peek into what the next three years will bring in advance of his Enterprise Connect session exploring the question: Will there be a new model for enterpris....
March 15, 2017
Andrew Prokop, communications evangelist with Arrow Systems Integration, discusses the evolving role of the all-important session border controller.
March 9, 2017
Organizer Alan Quayle gives us the lowdown on programmable communications and all you need to know about participating in this pre-Enterprise Connect hackathon.
March 3, 2017
From protecting against new vulnerabilities to keeping security assessments up to date, security consultant Mark Collier shares tips on how best to protect your UC systems.
February 24, 2017
UC analyst Blair Pleasant sorts through the myriad cloud architectural models underlying UCaaS and CCaaS offerings, and explains why knowing the differences matter.
February 17, 2017
From the most basics of basics to the hidden gotchas, UC consultant Melissa Swartz helps demystify the complex world of SIP trunking.
February 7, 2017
UC&C consultant Kevin Kieller, a partner at enableUC, shares pointers for making the right architectural choices for your Skype for Business deployment.
February 1, 2017
Elka Popova, a Frost & Sullivan program director, shares a status report on the UCaaS market today and offers her perspective on what large enterprises need before committing to UC in the cloud.
January 26, 2017
Andrew Davis, co-founder of Wainhouse Research and chair of the Video track at Enterprise Connect 2017, sorts through the myriad cloud video service options and shares how to tell if your choice is en....
January 23, 2017
Sheila McGee-Smith, Contact Center/Customer Experience track chair for Enterprise Connect 2017, tells us what we need to know about the role cloud software is playing in contact centers today.