The organization HealthIT.gov has issued guidance for employers who allow employees to access information through a mobile device. This information may be helpful for employers in setting up security protocols for mobile devices. Click here for access to a summary of best practices.
The guidance suggests the following:
- Requiring a password or other user identification
- Enabling encryption
- Remote wiping and/or remote disabling
- Disabling file sharing applications
- Installing and enabling a firewall
- Installing security software
- Keeping security software up to date
- Researching apps before downloading
- Maintaining physical control
- Using security when sending information over public WiFi
- Deleting information before re-using the device.
Benefit Allocation Systems, Inc. is committed toward maintaining best practice security and privacy processes, including the process surrounding the need for privacy and security of mobile devices. BAS encrypts all company-provided laptops and installs mobile device monitoring software on all employee mobile devices that are used to access client information.
BAS’ mobile device management program ensures that only approved, valid users can access BAS emails and data. The program enforces a secure PIN on the application to access corporate data, and implements encryption whenever the enrolled device is backed up. Importantly, the program includes the ability to remotely wipe devices that are lost, stolen or compromised.
For more information about BAS’ mobile device policy, contact security@BASusa.com.
