How to get employees mobile with maximum data security

Organizations around the world are finding that mobile workers can be the key to greater service efficiency and effectiveness. If you are considering making staff more mobile, there are necessary steps to make certain that laptops do not lead to privacy and security violations.

Defining “mobile computing”

In some instances, employees can perform their jobs using tablets or even smartphones. For most, though, the best tool is a laptop computer for its:

  • Comfortable screen
  • Keyboard designed for high-volume data entry
  • Sufficient storage

These laptops allow public employees to attend meetings, travel to job sites, and save money through "hoteling" with others in their department to save valuable office space.

How to do it safely?

1. Encryption

Data is useless to an unauthorized user who cannot understand it, so encryption of all data at all times is the first step.

There are constructive debates about encrypting all data in a government data center, but those arguments do not apply to laptop computers.

The first tactical steps toward safe mobility are:

  1. Whole-disk encryption of the machine's internal storage
  2. Mandatory use of VPN tunnels for transferring data from remote locations

The same requirement for encryption should apply to any USB drives attached to the laptop. It does not matter whether it is a thumb drive or a multi-terabyte hard disk.

2. Mobile device management (MDM)

Mobile device management (MDM) is not just a tool for managing tablets and smartphones. The same management tools are critical for enforcing policies on laptop computers, as well.

A good MDM system will enforce policies requiring encryption, but it will also do much more, including:

  1. Checking for necessary anti-malware software
  2. Applying office-specific firewall rules
  3. Maintaining white-list and black-list membership for web browsers

MDM is the insurance policy the IT group needs to make sure that policies are honored.
As an insurance policy, MDM can also:

  1. Erase hard disks if laptop computers are lost or stolen
  2. Prevent employees from adding software that might circumvent regulations or policies

With data secured and policies enforced, IT managers can move to the third, and most difficult step: training employees.

3. Training

Employees are often under considerable pressure to do as much as possible during their work day. Many times they will see security policies and infrastructure as roadblocks between them and productivity.

Training needs not only to explain the policies but also why they are important. When employees understand the rationale and the importance placed on those policies by management, they are much less likely to go around the policies and tools when job stress builds.

Mobile devices can be vital tools in the struggle for greater organizational efficiency. Taking a handful of steps as you deploy laptop and handheld computing devices will help ensure that the efficiency doesn't come at the cost of risky security and endangered privacy.

 

Need advice on new IT projects? Want tips for speeding up your network? Call us at (484) 753-7200 for IT advice.