Best practices in accessing business cloud applications
Assign topic to the user
Answer:
Some best practices in accessing business cloud applications from mobile devices are:
- Use a secure channel for the connection (VPN, SSL, etc)
- Never store information related to your credentials of access in the device (avoid remember user/password in the device)
- Lock your device with a code, and also lock each app (above all the app that you use for accessing business cloud)
- Never share the device with another person
- Avoid Free public Wifi connections, or if you use one, be sure that your connection is protected by a secure channel (VPN)
By the way, we have a template related to the mobile devices, and although it is not mandatory in the standard ISO 27001, you can find it here “Mobile Device and Teleworking Policy” : https://advisera.com/27001academy/documentation/mobile-device-and-teleworking-policy/
We also have the template Bring You r Own Device (BYOD) Policy, and again it is not mandatory in the standard, but you can find it here “Bring Your Own Device (BYOD) Policy” : https://advisera.com/27001academy/documentation/bring-your-own-device-byod-policy/
Maybe can be interesting for you the standard ISO 27017, which is specifically focused on the information security control for cloud services, so this article can be interesting for you “ISO 27001 vs. ISO 27017 – Information security controls for cloud services” : https://advisera.com/27001academy/blog/2015/11/30/iso-27001-vs-iso-27017-information-security-controls-for-cloud-services/
Finally, if you are interested in the security controls of ISO 27001, maybe our online course can be also interesting for you “ISO 27001:2013 Foundations Course” : https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Mar 06, 2016