Personnel guidelines for safe usage of mobile devices

Critical
High
Normal
Low

There are separate instructions for staff to use mobile devices. The instructions cover:

  • restrictions on installing software and using various services on your organization's devices
  • procedures for the registration of new devices
  • requirements for physical protection of equipment and installation of updates
  • access control requirements
  • protecting your organization’s data with encryption, malware protection, and backup
  • the ability of the organization to remotely control the device
Connected other frameworks and requirements:
11.2.6: Security of equipment and assets off-premises
ISO 27001
6.2.1: Mobile device policy
ISO 27001
10.1.1: Policy on the use of cryptographic controls
ISO 27001
11.2.8: Unattended user equipment
ISO 27001
12.6.2: Restrictions on software installation
ISO 27001

Enabling remote wipe on endpoint devices

Critical
High
Normal
Low

The organization must enable remote wiping on all mobile devices it manages (e.g., phones, laptops, tablets).

Remote wiping can help protect your device and the data it contains in the event of loss or theft. However, remote wiping must be used with extreme caution.

Connected other frameworks and requirements:
7.9: Security of assets off-premises
ISO 27001

Arranging suitable equipment and storage equipment for teleworking

Critical
High
Normal
Low

Arranging suitable equipment and storage for teleworking if the use of personal equipment beyond the control of the organization is not permitted.

Connected other frameworks and requirements:
6.2.2: Teleworking
ISO 27001
11.2.6: Security of equipment and assets off-premises
ISO 27001
6.7: Remote working
ISO 27001
7.9: Security of assets off-premises
ISO 27001
No items found.