Best practices for securely maintaining and deploying your Android devices for work


Whether it’s ubiquitous access to information or advanced new sensors that can model 3D space, one of the most exciting aspects of mobile devices is their potential to change the way we do business. Often that transformation can be dramatic, bringing new questions and challenges for IT decision makers tasked with building new infrastructure, managing device configurations and working with new partners.



I would be sharing the first in a series of best practice advisories that give recommendations for deploying and using Android for Work as published by google. This advisory focuses on five best practices for securely deploying and maintaining your Android devices.

Applications Distribution

Distribute public and internal applications via the Play Store to take advantage of the security benefits and convenience of Play’s updates. Android recommends disallowing installation from “unknown sources,” as apps installed from outside the Play Store have a higher incidence rate of malware.

Research

Research OEM and carrier partner commitments to Android’s monthly security updates when deciding which devices to purchase and support. Consider restricting access to sensitive company information on devices that don’t receive regular updates.

Storage

Store company data separately from personal data when using a personal device for work (BYOD). Separate storage ensures personal apps can’t access corporate information, and also ensures that the employee’s personal photos, music and apps remain private.

Policy usage

Use policies to require encryption to protect stored corporate data on devices with access to company information. For additional security, customers should consider using full disk encryption and requiring a PIN or password to start the device.

Management

When managing a range of devices, ensure that your Enterprise Mobility Management (EMM) solution takes a best-available approach to management that uses the latest APIs supported on a given device. This enables newer management capabilities to be used even if there are older, less-capable devices across your fleet.

We recommend using these guidelines and those in future advisories as a reference when configuring your mobility environment to make the most of Android for Work’s extensive security and productivity benefits.

0 comments:

Post a Comment

 
Top