Mobile Security Needs To Focus on Data Instead of Mobile Devices


The proliferation of banking malware and certain Trojan programs that steal valuable data from devices without the knowledge of the user has made it necessary now for companies to implement enhanced enterprise mobile security features. Nearly 17000 new variants of malware have been found targeting various Android devices according to a survey conducted around the end of the year 2013. Meanwhile, the rise in the use of cloud traffic systems has made it even more difficult for companies to contain this threat of malware.

Employees of most IT consulting services companies require easy and remote access to all enterprise information so that higher productivity margins may be reached. It also facilitates speedy decision making. However, in the midst of all this, all company resources, data and applications are needed to be guarded against the attack from malwares. Another thing that adds to the problem is that more employees are now downloading and using third party apps as well as accessing the cloud services over corporate network, and a host of new cloud based software programs have been introduced for non-technical mobile users.

These allow users to have access to easy to use tools that enable them to create and manage their very apps without IT involvement. Circumventing IT in this manner makes it possible for users to create numerous problems for the enterprise such as security breaches, unmanaged flow of data and compromised GRC mandates.

For this reason, a successful strategy of enterprise mobility needs to place the applications first and chart their wide range of users from different sources for different reasons. Mobile apps, however, require greater monitoring, management and security. With a browser, the application data and logic of the enterprise are kept in the data center.

This is quite unlike mobile apps where such similar information is kept by the app within the device itself. Whether an organization decides to only stick to company-issued devices when it comes to mobility or allow BYOD (bring your own device), they should focus more on locating and securing enterprise apps as well as relevant data instead of locking down devices for the sake of security.