MobileIron products and services have been validated against the following set of security standards and certifications. For certain certifications or qualifications, MobileIron leverages independent third-party evaluators to ensure all security requirements are met.
As part of our commitment to trust and security, MobileIron has successfully completed a SOC 2 Type 2 assessment (formerly known as SAS 70). As part of the SOC 2 assessment, the operational and security processes of MobileIron Cloud was reviewed by an independent certified public accounting firm. The detailed results of this stringent process are available upon request - simply contact your sales representative.
MobileIron Cloud platform received FedRAMP Authority to Operate (ATO) from the United States Postal Service. The FedRAMP Agency ATO recognizes that MobileIron Cloud has passed the federal risk management process defining standard security requirements for all cloud providers.
MobileIron became the first company in the world to receive Common Criteria certification against Version 2.0 of the Mobile Device Management Protection Profile (MDMPP V2.0 and MDMPP Agent V2.0) from the National Information Assurance Partnership (NIAP). NIAP is the United States government initiative, operated by the National Security Agency (NSA), that oversees the national program to evaluate technology products for conformance to Common Criteria.
The EU-US Privacy Framework was developed by the US Department of Commerce and the European Commission to provide a legal transfer mechanism for the transfer of personal data from the European Union to the United States. The framework also provides EU citizens greater transparency with respect to the personal data collected by US organizations as well as an enhanced mechanism for resolving privacy disputes.
The MobileIron Core platform has received Security Technical Implementation Guide (STIG) approval from the Defense Information Systems Agency (DISA). This approval allows U.S. Department of Defense (DoD) agencies to deploy MobileIron on both Android and iOS devices within certain DoD networks.
CSA STAR is the industry’s most powerful program for security assurance in the cloud. STAR encompasses key principles of transparency, rigorous auditing, and harmonization of standards. STAR certification provides multiple benefits, including indications of best practices and validation of security posture of cloud offerings.
NSA/CSS's Commercial Solutions for Classified (CSfC) Program has been established to enable commercial products to be used in layered solutions protecting classified NSS data. This will provide the ability to securely communicate based on commercial standards in a solution that can be fielded in months, not years.