Mobile security: Setting responsible goals

So what does this have to do with mobile security? Well, everything. Mobile security is not an absolute -- it is a mode of operation. If you have the right processes, technical controls and people smarts, this mode of operation is something that can be managed to serve as a way of reducing business risks. So properly setting and managing your mobile security goals is good for business -- and as a nice side benefit, it is good for your job and your career.

Goals to consider
It would be nice just to say all hard drives are encrypted, all wireless communications are locked down, and no one ever installs or connects to unsupported mobile environments. But we all know that reality has a much different plan for mobility. When it comes to keeping the mobile enterprise protected from the elements, it is essential to have clear and concise goals. Trying to achieve mobile security in any other way is just a delusional exercise in futility.

Here are some examples of specific and reasonably attainable goals that highlight areas you need to think about regarding mobile security.

Of course, you'll need to tweak these, based on your business needs. But by agreeing or disagreeing with these goals, it is easy to see where your business currently stands with its mobile security system.

Making your goals a reality
Goal setting is more than just saying "All mobile devices are locked down" or "Everyone knows what not to do with their mobile devices." There is actually a science to it, and

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Mobile Security Mobile security threats Two-factor authentication: Mobile security at your fingertips Securing your Windows Mobile devices In-the-cloud defenses for mobile malware On-device defenses for mobile malware Is malware coming to a smartphone near you? Protecting data on your BlackBerry Defining your mobile security policy Government regulations and mobile security policies Symbian: Protect your data, not just your device Mobile Policies and Procedures Securing corporate data on your laptops Podcast: FAQs on mobile policies Developing and instituting corporate mobile device policies Mobile security: Asserting control over mobile devices Mobile security culture starts at the top Detecting rogue mobile devices on your network Mobile security policies Defining your mobile security policy Government regulations and mobile security policies Mobile security policies: Why a policy is important Mobile Device Security Fingerprint recognition and mobile security Traditional security threats coming soon to mobile device near you Securing your Windows Mobile devices Mobile security: Protecting your data, not just your devices Prevent mobile malware: Learn how to protect your enterprise and devices Podcast: The truth about network security and mobile device access Protecting data on your BlackBerry Going green: Recycling and energy saving tips for mobile devices -- podcast New challenges in mobile device discovery Quiz: Mobile Device Security -- Who else can hear me now? Mobile Device Security Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary mobile VPN  (SearchMobileComputing.com) screaming cell phone  (SearchMobileComputing.com) SMiShing  (SearchMobileComputing.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

it is very specific. It involves the following seven steps.

Short of having management that does not care about IT and security, if you follow these steps for each of your mobile security goals, there is absolutely no reason you cannot eventually accomplish them.

There is a saying that if you do not have goals for yourself (or in this case, for the mobile systems you are responsible for), you are doomed forever to achieve the goals of someone else. It happens a lot in the workplace and relates directly to IT and mobile security. This is why it is important to have a solid set of goals that can help you -- and the business -- get to where things need to be. Any way you slice it, making your mobile security goals a reality will minimize vulnerabilities and keep your organization out of the headlines and off the Privacy Rights Clearinghouse Chronology of Data Breaches "honor roll."

While doing all of this, it is important to remember that everything you do counts toward mobile security. Not just the components you want to count but everything you do related to mobile security. Every choice you make, every control you implement and every process you put in place is either moving you closer to your mobile security goals or moving you away from them. The responsibility and leadership associated with goal setting will undoubtedly bleed over into other areas of security and business too -- ultimately benefiting everyone involved for the long term.

About the author: Kevin Beaver is an independent information security consultant, speaker, and expert witness with Atlanta-based Principle Logic, LLC. Kevin has authored/co-authored six books on information security, including Hacking For Dummies and Hacking Wireless Networks For Dummies (Wiley), as well as The Practical Guide to HIPAA Privacy and Security Compliance (Auerbach). He is also the creator of the Security on Wheels information security audio books, providing security learning for IT professionals on the go. Kevin can be reached at kbeaver@principlelogic.com.

Rate this Tip To rate tips, you must be a member of SearchMobileComputing.com. Register now to start rating these tips. Log in if you are already a member. DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.