Information security is a major concern for almost every business, and last month the world really got a wake-up call thanks to the Heartbleed bug.
Heartbleed is actually a flaw in a software library that millions of websites use to encrypt private data and communications. As a result of this flaw, the bug is able to scrape sensitive information from a server’s memory. The vulnerability is incredibly serious and could have widespread implications if not dealt with. This can be pretty scary, but the threat to information security is nothing new.
Despite all the attention paid to desktop browser users, very little discussion has focused on the many smartphone and tablet users who access a variety of applications that may share the affected servers and also be at risk. Mobile security can be compromised for a number of reasons: design flaws, vulnerabilities, failures in protocols, spyware, malware, viruses, and other security threats.
The recent BYOD (bring your own device) phenomenon has only added to the woes of many CIOs in the wake of frequent data theft and security breaches. Today’s mobile devices are more powerful than ever and many people access sensitive accounts with these handheld machines. A misplaced or stolen mobile device can mean a major security breach, especially as people are moving data across different devices for both personal and business reasons.
Now, more than ever, there is a need to really look at the life cycle of mobile security architecture and how it is managed over time. A key factor is encryption technology, which is integral in protecting confidential data throughout the cycle of a digital transaction. An integrated mobile security approach, in which data is encrypted, is often the best form of protection.
Those mobile users not protected by an EMM (enterprise mobile management) solution are at the highest risk, which is a great majority of the population. The best EMM solution would ideally cover all aspects of productivity and security, including mobile email management, mobile application management, mobile device management and mobile security management. This security solution must also evolve with the changing behaviour of mobile users, new threats and upgraded technologies.
There is no doubt that businesses must now pay attention. Integrated mobile security is absolutely essential, as the number of mobile users is going to increase dramatically over the course of the next few years. Security must reside in every layer of the organisation and must never be a mere afterthought.
Written by Montash.
We are hosting a Cyber Security Breakfast Briefing with Mandiant, a FireEye Company on Thursday 15th May 2014, 8am – 10am at Grand Connaught Rooms, Holborn, London. Entries are priced at £20, with all proceeds going to Groundwork Charity.
We would like to take this opportunity to invite you to attend this event.
The briefing will be an open discussion forum for top cyber security experts to discuss the latest threats that companies face and how best to combat them. The forum will highlight the potential cyber threats that target businesses on a large scale and will examine the crossover of security risks in both the real world and cyber world.
Montash is a multi-award winning, global IT recruitment firm. Specialising in permanent and contract positions across mid-senior appointments which cover a wide range of industry sectors and IT functions, including:
ERP, BI & Data, Information Security, IT Architecture & Strategy, Scientific Technologies, Demand IT and Business Engagement, Digital and E-commerce, Infrastructure and Service Delivery, Project and Programme Delivery.
With offices based in London, Montash has completed assignments in over 30 countries and has appointed technical professionals from board level to senior and mid-management in permanent and contract roles.
For more information please visit www.montash.com