If there’s one thing businesses have learned from COVID-19, it’s that the ability to run operations in a Work From Home (WFH) setting is essential for our modern world. But there’s a big difference between having the ability to let employees work from home and having the confidence that your employees are working securely from home.
When your entire organization is relying on WFH practices, day in and day out, for months, that confidence in your cybersecurity is really, really valuable.
So, let’s talk about how you can quickly and easily improve your mobile device security for employee-owned devices using Microsoft Intune, which is awesome.
Microsoft Intune is a Mobile Device Management (MDM) and Mobile Application Management (MAM) tool. That means it helps you control security and access on mobile devices and their applications. Here’s the really cool part: Intune empowers you to control and track access to your company’s data on your employee’s personal devices, without infringing on their personal privacy.
Intune does this by using Microsoft’s intelligent cloud (Azure) to partition your company data in its own little fortress, so you can secure the data, prevent it from leaving its fortress, and even delete it if the mobile device gets lost or stolen… or if your employee decides they want to trade in their old phone for the latest and greatest Samsung.
Intune is included with the Microsoft Enterprise Mobility + Security (EMS) suite.
In a word: everything.
Well, to qualify that, you can control everything having to do with your company’s data, so you don’t have to worry about thieves or unsecured apps peeking at your top-secret business files.
Because Intune integrates with Microsoft 365 (formerly Office 365) and Azure Active Directory, Intune enables you to:
Some employees will be happy to have you secure their device against attacks and cyberthreats. Other employees will be uncomfortable with what they see as “giving away” control of their devices. To meet different mindsets while maintaining your business data security, Intune offers two different levels of control.
Employees can choose to “enroll” their mobile devices into Intune for full, secured access to authorized data. This option grants you more administrative control over their personal devices (while maintaining their personal data privacy), and allows you to set up password requirements, VPN connections, threat protection, and other security measures on their behalf.
In addition, enrolled devices can receive certificates that allow them to access company Wi-Fi – and it also gives you insight into the security of their device.
Enrolled devices provide your company with:
Employees who are uncomfortable with you having control over their device won’t be able to access your company’s full mobile resources through their devices. However, they can still choose to install a smaller selection of apps, such as email or Microsoft Teams.
Employees who choose this option will be required to use multifactor authentication to confirm their identity and, using that cool Mobile Application Management (MAM) tool we mentioned earlier, you will maintain the power to:
None of us know what will happen next with COVID-19, but many modeling reports suggest that more social distancing may be required down the road as outbreaks repeatedly increase and calm down in waves.
Whether or not that happens, it’s still super important to have the ability to manage a secure WFH or remote work setup, because (let’s face it) we all love using our phones and tablets. Naturally, we will all want to use these devices for work more and more over the coming years.
No matter what the future brings, Microsoft Intune makes it easy for you and your employees to stay productive and happy, in coffee shops, at hotels, at work, and at home.