Scribd Logo
Upload

Welcome to Scribd!

  • Movilidad y BYOx OBS Oferta Tecnológica

    Uploaded by

    Ernesto Gerardo Liberio Vera
    21 views36 pages
    BUYOX

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    BUYOX

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    21 views36 pages

    Movilidad y BYOx OBS Oferta Tecnológica

    Uploaded by

    Ernesto Gerardo Liberio Vera
    BUYOX

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 36

    Movilidad y BYOx

    Ramss Gallego
    CISM, CGEIT, CISSP, SCPM, CCSK, ITIL, COBIT(f), Six Sigma Black Belt
    Security Strategist & Evangelist, Dell Software
    ramses.gallego@software.dell.com
    ramsesgallego
    Immediate International Vice President, ISACA, Board of Directors
    Privacy by Design Ambassador, Government of Ontario, Canada

    2005

    2013

    Aprovisionamiento
    Identidad Auditora
    Productividad Excepciones

    Estrategia

    Efectividad Polticas
    Derechos Personal Satisfaccin
    Dual-persona

    NAC

    Backup
    Confianza Acceso
    Eficiencia
    Retencin Gobernanza
    emplead Control Integridad
    Legalidad

    Apps Coste En cualquier lugar

    Consumerizacin Geolocalizacin
    Propiedad

    Diversidad

    Refuerzo de
    polticas

    Conformidad
    legal

    Containerizacin

    Gestin de
    inventario

    Distribucin de
    software

    Administracin y
    reporting

    Modelo de
    servicio

    He visto organizaciones invertir millones


    de dlares en medidas de seguridad que
    eran penetradas por una persona
    conocida con un dispositivo mvil.
    Bill Boni
    CSO, Motorola

    Educar a los empleados en los


    requerimientos de seguridad mvil
    Implementar una poltica de dispositivos
    mviles que se ajuste al perfil de riesgo de
    la compaa
    Definir la naturaleza de los servicios
    disponibles
    Integrar los dispositivos en un programa
    de gestin de activos
    Describir el tipo de autenticacin y
    cifrado a utilizar

    9 steps to protect mobile devices

    Educate users on the importance of security and ways to avoid the loss of
    their mobile devices and laptops.
    Be sure password protection is set to "on" for all mobile devices. Most
    come with some built-in password protection, and higher levels of access
    security can be added through third-party applications.
    Install a mobile management system that enforces reasonable data
    security policies on the widest possible range of mobile, wireless devices.

    9 steps to protect mobile devices

    Determine which files can and cannot be downloaded and by which users,
    and enforce these rules through any means available, including port locking,
    protecting the company's most sensitive and regulated data from exposure.
    Encrypt either individual files or the entire contents of the mobile device,
    depending on the organization's security needs, both for transmission and
    storage of sensitive information on mobile devices.
    Enforce connection/VPN security standards for all transmissions to mobile
    devices to ensure transmission security.

    9 steps to protect mobile devices


    Require active firewall and virus protection on all mobile devices and
    update the firewall and virus protection regularly through downloads from a
    central server.
    Enable device lockdown and "kill" functions so that, for instance, if a
    device does not connect to the corporate network for 24 or 48 hours, or if it
    does attempt to connect after being reported missing, it automatically wipes
    the data in its memory clean.
    Log device use to access any data defined as sensitive in regulations or
    otherwise considered sensitive by the organization (for instance, corporate
    financials, research results and customer data).

    How have mobile devices, networks and location-based services


    changed our values regarding privacy, data collection and data use?
    What rights do people and organizations have regarding the data
    collected? And what expectations as these services become more
    popular?
    What rights are granted and recognized internationally and how can
    compliance be assured?
    What standards should apply to government access to, and collection
    of, location data? What are the limits?
    What are the most significant international differences in the
    legislation and regulations about geolocation?

    Some important audit issues (1)

    Some important audit issues (2)

    Some important audit issues (3)

    Some important audit issues (4)

    Antoni Gaud, 1852 -1926

    la originalidad consiste
    en volver a los orgenes

    GRACIAS

    Ramss Gallego
    CISM, CGEIT, CISSP, SCPM, CCSK, ITIL, COBIT(f), Six Sigma Black Belt
    Security Strategist & Evangelist, Dell Software
    ramses.gallego@software.dell.com
    Immediate International Vice President, ISACA, Board of Directors
    Privacy by Design Ambassador, Government of Ontario, Canada

    You might also like