Many organizations allow employees to use mobile devices for everything from email to logging patient notes. Examples of devices include laptops, smartphones, tablets, “wearables,” and other portable devices. It’s important that the security of these devices is treated just as seriously, if not more, as desktop workstations. Here are a few best practices you should enforce on mobile devices:
- Keep software up to date to reduce vulnerabilities.
- Use at least 6-character lock-screen pins/passwords.
- Set password attempts to 10 or less.
- Disable content within lock-screen notifications.
- Require device encryption.
- Install applications only from trusted sources and maintain an approved application list.
- DO NOT use public USB charging stations.
- DO NOT click on links in unexpected text messages.
Consider using a Mobile Device Management software to implement and enforce the above best practices.