CSIAC

Cyber Security and Information Systems Information Analysis Center

/ All Podcast Series / / Mobile Security – Part 2 of 2

- Mobile Security – Part 2 of 2

| Presenters: Michael VanSteenburg, Sean Bird | 2 Comments

Notice: This podcast video may contain personal or third-party views and opinions not associated with the government.
Please see our terms of use located here: https://www.csiac.org/csiac-terms-of-use/
https://www.csiac.org/podcast-player/32483/mobile-security-part-2.mp3

In the past five years alone, the amount of mobile data has grown eighteen fold (Cisco Mobile VNI, 2017). Security concerns are at the forefront due to the reliance on mobile devices for both business and personal use, along with the ever-increasing data usage. There are two concepts of mobile security; physical and data. Physical security can consist of theft, over-the-shoulder techniques, biometric passcodes, and others. Data security deals with downloading applications containing malware, unpatched and vulnerable software, Bluetooth vulnerabilities, and open Wi-Fi spots. This video podcast and companion article will give you an overview of the current threats to mobile device security and what you can do to mitigate them. With an ever growing dependence on mobile devices, the security of these devices is paramount. This is part 2 of a 2 part series on mobile security. Part 1 is available here: https://www.csiac.org/podcast/mobile-security-part-1/

Read the CSIAC Report to learn more about mobile security: https://www.csiac.org/csiac-report/mobile-security/

Presenters

Michael VanSteenburg
Michael VanSteenburg
Mr. VanSteenburg is a Cyber Security Analyst at Quanterion Solutions Incorporated in Utica, NY. He has earned his Masters degree in cybersecurity from Utica College with a concentration in computer forensics. His areas of expertise are computer and network security, information assurance, and computer forensics. His research focuses on network design security, intrusion detection systems, and implementation of current cybersecurity best practices. He also has experience in transitioning web systems from traditional infrastructure to the Azure Government cloud as well as deploying privately hosted cloud infrastructure.
Sean Bird
Sean Bird
Sean Bird is a Software Engineer with Quanterion Solutions Inc. in Utica, NY. His work includes system design, systems analysis, software development, and cloud security/infrastructure. He has earned his undergraduate degree in Cybersecurity from SUNY Polytechnic Institute (formerly SUNYIT) and is currently pursuing his graduate degree in Computer Engineering at Syracuse University.

Reader Interactions

Ask a Question or Comment:

  1. Should corporations who now allow their employees to “Bring Your Own Device” to connect with Corporate networks be held more liable for inadequate risk management when a breach occurs because of great connectivity to unsecured devices?

  2. As always, companies should implement best practices security policies in order to ensure proper data separation of BYOD devices and sensitive information. Implementing features such as Mobile Device Management (remote device wiping) can help mitigate data exposure from device loss. Providing VPN network capabilities can also mitigate the risk of data exposure. Companies may also implement role based access based upon device ID for internal services.

    In summary, companies can strive to implement the best practices and policies possible, but it is never 100% risk free when using BYOD policies. The matter of company liability is more of a subjective opinion based upon the situation of the particular data breach and the type of services and data that are compromised.

Leave a Comment