Blog Forensic Control image

Blog

smartphones

Smartphone Security – The Basics

Smartphone security often comes a poor second to other areas of IT security. But they are just as vital to secure, as with all devices which store and transmit important information, they’re vulnerable to hackers and damage, loss and theft. If your work phone is synchronised with internal office systems, the risk is greater still.

When the US security firm Checkpoint Software interviewed more than 700 businesses for their 2015 report they found that 42% of interviewees had encountered mobile security incidents, which cost more than $250,000 each to fix.

We’ve collated the list of expert, yet basic tips to help you secure smartphones used by your employees.

24 security tips for business smartphones
  1. Keep a comprehensive log of the phones given to your employees for work, and ensure that phone retrieval/wiping is part of your staff termination procedures
  2. Set in place a formal business phone use protocol, with safety and security at its heart, and train staff in how to keep their phone secure both inside and outside of work
  3. Choose a phone with the proven security and anti-theft features
  4. Enforce use of lock codes – we’d recommend 6 digits as a minimum length, with a lock-out featurte
  5. Switch on ‘Do Not Track’ in your mobile web browser to stop websites from collecting your data
  6. Block your phone number to stop businesses harvesting it and potentially selling the data on
  7. Use a service such as Google Voice to block incoming callers who are not in your phone book
  8. Learn how to recognise spam calls that could result in your number being sold to marketing companies. A caller ID solution is a good tool
  9. Use a recovery app to find phones if they are lost or stolen – they can find devices via their GPS location
  10. Log completely out of any websites you visit via the phone, particularly important if you use your business phone to buy items online
  11. Enable all the phone’s security features and tools, and update them as soon as updates become available
  12. Add contact information to your device so if someone finds it, they can return it to you
  13. Only download apps from stores you know for sure you can trust, like the Apple or Google store, and avoid third party app stores at all costs. They’re notorious for spreading viruses and malware
  14. Only download the apps you actually need for business
  15. Keep your personal and work phones totally separate, with no cross-over of data or contacts
  16. Back up your data regularly, ideally onto the cloud
  17. Keep your operating system updated to the latest versions
  18. When you’re not using the phone, turn WiFi and Bluetooth off.
  19. Reject unsolicited texts and emails – ideally, don’t even open them
  20. Consider encrypting all traffic with a VPN service
  21. Never leave a mobile unattended
  22. Don’t use unsecured WiFi networks
  23. Keep the phone locked when not in use; use autolock after a set amount of time
  24. Encrypt sensitive information

Finally, as technologies and the threats to them are always evolving, regular mobile security reviews are necessary to ensure your staff are fully aware of any new threats and know exactly how to avoid current threats. Take a look at our previous blog post on what you need to be aware of with smartphones. Do not hesitate to contact us if you require any assistance.

No Comments

Post A Comment