Mobile security devices: Simple steps for SMBs

There are different steps to take when securing mobile devices, depending on the type of device you have. USB keys and wireless access points (WAPs) are two very different creatures. What works for one may not work for the other.

No matter the device, the first step is to have a written security policy prohibiting employees from installing and using nonstandard equipment. Nonstandard means anything not purchased, approved, scanned, built or reviewed by your IT department. This includes devices such as the latest WAP or mobile gizmo that an employee buys on his own.

Securing USBs

For devices that provide direct physical access, such as USB keys and tokens, or iPod

Digg This!     StumbleUpon     Del.icio.us

VIEW ALL IN THIS CATEGORY

RELATED CONTENT Security for the midmarket Locking down security in the move to electronic medical records A CIO's advice for implementing single sign-on solutions Options for outsourcing security grow, offer IT budget savings Network access control: Pointers for getting the knack of NAC Stopping malware viruses from attacking Web 2.0 technology Virtual servers no escape from IT security management concerns Unified communications: Securing access to OCS Unified communications security: How safe is it? Risk assessment frameworks easy to employ Midmarket regulatory compliance management: Don't let your guard down Tools and Technology: Avoiding cool-tool envy Fixed-mobile convergence saves firms costly mobile phone charges Smartphone envy creates chaos for CIOs IPhone improvements OK, but not a sure thing IPhone: CIOs ponder personal tech toys in the office Wireless LAN security tools: SMB Buying Decisions Mobile technology for the midmarket ITSM and corporate performance management: CIO Decisions Ezine Midmarket data center management guides: Tips and best practices 2008 top 10 technology articles: Social media, Vista, IT salaries FAQ: What is unified communications, and why would I want it? Mobile unified communications options for the midmarket Top five technology trends -- and why you should give thanks Information technology management e-book downloads for midmarket CIOs Arts center's network infrastructure hits right note with Wi-Fi, FMC When Microsoft shuts you down and other IT horror stories CIOs, unified communications and the lost art of conversation

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary USB  (SearchCIO-Midmarket.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

s, which are overgrown USB devices, there are equally effective physical controls for blocking access. Some of these controls are already baked into Windows and can be easily turned on by any system administrator.

Securing laptops

The time is long gone when an SMB's computer network was confined to the office. Now, it's wired -- and unwired -- to the world, for good or bad.

Securing WAPs

Wireless devices can be particularly insidious, since they can sit unnoticed under a desk for a long time, spewing data out to the world and doing all kinds of damage. USB devices, on the other hand, are usually put in and taken out quickly.

Confidential data walking out the door is scary for any organization. For SMBs without a dedicated information security staff, data loss can be fatal. Large organizations may take a hit in the press, lose prestige and business, or even be sued, but they have the corporate bulk to eventually survive. SMBs can lose their entire business -- and livelihood. Follow the simple steps above and you'll be much less vulnerable.

Joel Dubin, CISSP, is an independent computer security consultant in Chicago. He is a Microsoft MVP in security, specializing in Web and application security, and the author of The Little Black Book of Computer Security, available from Amazon.

Rate this Tip To rate tips, you must be a member of SearchCIO-Midmarket.com. Register now to start rating these tips. Log in if you are already a member. DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.