Q&A: What CISOs Can Do About Mobile Security Threats

This blog was updated on May 22,2017, with the latest information about the Device Enrollment Program from Apple. Join the conversation on Twitter using #iOSinBusiness.

What is the Device Enrollment Program from Apple?

The Device Enrollment Program provides a fast, streamlined way to deploy your corporate-owned Mac, iOS or tvOS devices. With a mobile device management (MDM) and unified endpoint management solution like VMware AirWatch, IT can:

  • Customize device settings;
  • Activate and supervise devices over the air; and
  • Enable users to setup their own devices out of the box.

[Related: 27 Questions Answered about AirWatch & the Device Enrollment Program from Apple]

What IT challenges does the Device Enrollment Program help address?

The Device Enrollment Program solves several critical requirements for corporate-owned devices. First, organizations save time and money by eliminating high-touch processes for IT. DEP takes configuration time to zero. Deployment of corporate-owned devices with DEP means zero-touch configuration for IT, eliminates staging and automates device configuration.

Second, onboarding iOS or macOS devices is streamlined for users. Based on the settings IT configured, users are prompted through Setup Assistant (skipping through any unnecessary screens). Users only need to authenticate and don&#rsquo;t need to be tech savvy to get the content, apps and email they need on their smartphones.

Finally, supervising iOS devices over the air is possible with the DEP. With supervision, administrators have more control over the device and can disable features like AirDrop, the App Store and account modification. They can also enable features like password protection. Also, the MDM profile cannot be removed, which eliminates the possibility of un-enrollment to protect data and investments in devices and provides the best user experience possible.

What role does AirWatch play in Apple&#rsquo;s Device Enrollment Program?

To utilize the Device Enrollment Program, MDM capabilities like those part of VMware AirWatch are required. AirWatch integrates with the Device Enrollment Program, enabling organizations to automatically import devices in the console based on order history. Then, administrators can easily configure settings, apply profiles, assign applications and set restrictions that will apply automatically when users unbox devices.

[Related: iOS 10.3, tvOS 10.2 & macOS 10.12.4 Are Live! VMware AirWatch Has Your Mobile Business Covered]

How can I join the Device Enrollment Program from Apple?

First, enroll with Apple and register your organization&#rsquo;s information to create an account and designate your administrators. Next, configure your device settings and Setup Assistant steps in the AirWatch console. You then can ship devices directly to your users.

For more information, check out Apple&#rsquo;s Device Enrollment Program Guide.

What are the device requirements for the Apple Device Enrollment Program?

The devices must be corporate-owned and purchased directly from Apple or through participating Apple Authorized Resellers.*

*The Device Enrollment Program may not be supported by all Apple Authorized Resellers and carriers.

Where is the Device Enrollment Program available?

The Device Enrollment Program is available in 34 countries: Australia,Austria,Belgium,Brazil,Canada,Czech Republic,Denmark,Finland,France,Germany, Greece,Hong Kong,Hungary,India,Ireland,Italy,Japan,Luxembourg,Mexico,Netherlands, NewZealand,Norway,Poland,Portugal,Singapore,South Africa,Spain,Sweden,Switzerland, Taiwan,Turkey,United Arab Emirates,United Kingdom andUnitedStates.

What’s available for education with the Device Enrollment Program from Apple?

Both Apple and AirWatch give special consideration to unique education use cases. With Apple School Manager (ASM), Apple has delivered a central place for account creation, role definitions and content purchases. To support ASM, AirWatch designed a console section for education to setup mobile deployments and streamline management of teachers, students, classes, apps and more—whether you have a 1:1 or shared device deployment. After importing data from Apple School Manager, use AirWatch to:

  • Match devices with students or classes;
  • Assign applications (to users or devices); and
  • Configure the new Classroom application, allowing teachers to guide learning on iPads.

Students quickly choose the device with their photo displayed once their teacher has started the class.

Visit and to learn more about the Device Enrollment Program.


Read more..

Securing Enterprise Mobility after Shadow IT Strikes

By Brian Duckering, Marketing and Strategy Executive, Skycure For years now, your IT and security admins debated proper methods, tools and policies to mobilize your enterprise. While these official discussions dragged on, your users unofficially started using their mobile devices (#ShadowIT) for everything from email to managing and editing highly confidential documents and communications. They&#rsquo;re […]]> By Brian Duckering, Marketing and Strategy Executive, Skycure

For years now, your IT and security admins debated proper methods, tools and policies to mobilize your enterprise. While these official discussions dragged on, your users unofficially started using their mobile devices (#ShadowIT) for everything from email to managing and editing highly confidential documents and communications.

They&#rsquo;re not doing this to spite you or your company. They&#rsquo;re doing it because it fuels their productivity. Believe it or not, users break the rules to be more productive!

Though users&#rsquo; motivations are in the right place, it still puts IT in a precarious situation. Your enterprise has already mobilized itself. So how do you make sure that all of those devices are properly managed and secured (to protect both your end users and, perhaps more importantly, all the sensitive systems and data they access)?

And, let&#rsquo;s be honest, the clock is ticking. You need an effective mobile strategy to prevent a mobile breach that could cost your company a lot of money (and bad press).

Different Problem, Different Solution

One big challenge, though, is that mobile security requires a different solution than desktop or network security. Traditional systems that handle patch and identity management, anti-virus, firewalls, encryption, etc., simply don&#rsquo;t translate into an effective mobile security strategy.

Traditional anti-virus solutions, for example, won&#rsquo;t do anything to stop (let alone mitigate) ransomware that&#rsquo;s infected a user&#rsquo;s mobile device. Traditional firewalls won&#rsquo;t do anything to stop users from connecting to insecure or malicious Wi-Fi networks. And traditional encryption won&#rsquo;t keep users&#rsquo; documents safe if they lose their mobile device and haven&#rsquo;t set up a passcode.

The bad news is you can&#rsquo;t solve these mobile security challenges with traditional systems. The good news is you can solve them by integrating enterprise mobile management (EMM) and mobile threat defense (MTD).

[Read more: New Whitepaper! How to Select, Implement & Succeed with Mobile Threat Defense]


EMM solutions, like VMware AirWatch, handle onboarding, reporting and policy management (and enforcement). MTD solutions, like Skycure, handle the real-time, proactive prevention and mitigation of security threats (and report them back to the EMM solution, too). Skycure further simplifies the management and maintenance of the solution by relying on a public app that adheres to all of Apple&#rsquo;s and Google&#rsquo;s best practices and updates automatically, with no extra steps required by IT.

The integration of these two solutions is critical because it provides the 360 degrees of protection that end users (and your company) need. Recall why users started self-mobilizing in the first place: Productivity. What is the enemy of productivity? Interruption.

Thankfully, properly integrating EMM and MTD solutions means users can be productive with their mobile devices without the interruption of malware, malicious networks or device vulnerabilities. It also means IT can be productive without the interruptions of compromised mobile devices.

With an integrated EMM and MTD solution in place, you can automatically prevent ransomware installations, block connections to malicious networks and remotely wipe mobile devices if they are lost or stolen. These are just a few examples of the automated mitigation that a strong, seamless mobile security deployment provides.

[Watch: Republic National Distributing Company (RNDC) Secures Mobile Devices with VMware AirWatch & Skycure]

Learn More

In today&#rsquo;s mobile age, it is no question that end users work on their mobile devices with or without the official support of IT. IT&#rsquo;s job now is to deploy a mobile security strategy that empowers them to perform seamless onboarding, policy enforcement and management, real-time threat prevention and mitigation and reporting. Thankfully for IT, the tools for a successful mobile security strategy are already available via EMM and MTD.

You can find more information on EMM from AirWatch and more information on MTD at the Skycure website.

Read more..

Go Que Newsroom Categories

Fatal error: Allowed memory size of 67108864 bytes exhausted (tried to allocate 17 bytes)
in /home/content/36/8658336/html/goquecom/wp-includes/wp-db.php on line 2022

Query Monitor