Enabling secure mobility is one of the best ways government agencies can deliver the benefits of modern work to employees and constituents alike. To help organizations embrace the power of modern endpoints, applications, and cloud services, the Department of Defense (DoD) Mobile Device Strategy outlines a vision for supporting a highly mobile workforce. This document offers recommendations for providing secure connectivity and access to critical data and apps — all of which can be enabled through a unified endpoint management (UEM) provider like MobileIron.
Put MobileIron to work for your agency
Secure agency devices
- Secure any government-issued or personal mobile device.
- Enroll and configure devices automatically.
- Deploy certificate-based security.
- Selectively wipe devices.
Protect mobile apps and data
- Administer secure app store and enforce user authentication policies.
- Meet federal security and availability mandates.
- Protect app data on the device and in transit to the cloud.
Reduce data overage charges
- Remove high data usage apps from devices.
- Enforce Wi-Fi only for apps on iOS devices.
- Allow or block specific sites to prevent streaming through web browsers.
Support field productivity
- Allow only approved apps on devices.
- Ensure apps and data are always available to critical organizations such as FEMA.
- Prevent mobile threats from accessing mobile devices, data, and cloud services.
Enable two-factor authentication with derived credentials
- Enable mobile access with existing authentication solutions, such as common access cards (CAC) and personal identity verification (PIV).
- Simplify the user experience — no additional hardware is required.
- Comply with regulations such as Homeland Security Presidential Directive-12 (HSPD-12), Federal ICAM initiatives, FIPS 201, and NIST SP:800-157.
- Learn more about the MobileIron derived credentials solution with Entrust.
Support employee-owned devices
- Secure access to government apps and data on personal devices.
- Protect private employee apps and data and selectively wipe data.
- Support multi-OS devices and apps.
MobileIron’s federal certifications
A 3rd party approved U.S. government computer security standard. Protection of a cryptographic module within a security system is necessary to maintain the confidentiality and integrity of the information protected by the module.
Service Organization Controls (SOC) are a series of accounting standards that measure the control of financial information for a service organization. They are covered under the SSAE 16 and ISAE 3402 professional standards.
Fedramp is a mandatory U.S. government program that provides a standardized approach to security assessment, authorization and continuous monitoring for cloud services.
NIAP MDM PP
A National Information Assurance Program approved Protection Profile, which includes requirements to ensure particular functionality is present, and addresses DOD specific need for mobile device management servers.
Validated commercial solution for classified program components
CJIS is designed to secure fingerprint records, background check information and other criminal justice information that is stored with or shared between local, state and federal law enforcement agencies.
Derived Credentials & CAC/PIV
A Derived PIV Credential, which is issued by a Federal department or agency to ve used with mobile devices where the use of a physical card is impractical. The Derived PIV Credential is designed to serve as a Federal government-wide standard for a secure identity credential interoperable across agencies.