Mobile Device Management | MDM

A methodology and set of tools used to enable mobile productivity and enhanced user experience whilst ensuring organisational data are kept secure.

Ensuring that devices, like laptops, are secured and controlled by central management is now commonplace.

However, with more corporate data being stored and accessed on mobile phones and tablets through office apps like Microsoft 365 and web browsers, security standards such as Cyber Essentials now focus on how these devices are managed and secured.

Mobile Device Management

What is Mobile Device Management?

Mobile Device Management (MDM) is where devices, such as laptops, mobile phones or tablets, supplied by an organisation, or used to access corporate information, are managed to protect that data. MDM enables organisations to remotely remove that data, or wipe the device if the need arises.

Mobile Device Management can be customised to suit the needs of the business. Mobile Application Management (MAM) is often used to manage an organisation’s data at the application level and is often used on employee-owned devices. Full MDM is where the mobile device is likely to be owned by the organisation and gives far greater control over the device. Including what applications can be installed and how applications and settings used can be centrally applied and managed.

Interested in finding out more? Book a callback

IT Champion Ltd needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at any time. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, please review our Privacy Policy.

MDM in a Modern Workplace

How does Mobile Device Management fit into a Microsoft Modern workplace?

Microsoft Autopilot, a feature included with Intune allows for the automated provisioning of Windows devices, reducing IT involvement and speeding up the repair or replacement of devices.

At the heart of a Microsoft Modern Workplace is Microsoft’s device management tool, Intune. Intune is a cloud-based management tool that can be used to control devices such as laptops or mobile phones and it can apply security defaults such as encryption or security standards and ensure that the device’s software is managed and kept up to date. Intune is used in conjunction with Apple Business Manager or Android Enterprise to deliver a fully integrated solution.

Configurations vary between organisation, department, or device level, below are some of the common policies and configurations.

Typical configurations and policies applied to Windows devices

  • Password policy and device lockout

  • Windows update policy

  • Windows compliance policy

  • Remove local admin accounts

  • Encrypt all devices

  • Approved application list

  • Anti-virus deployment

Typical configurations and policies applied to mobile devices

  • Password policy and device lockout

  • Minimum device software version

  • Mobile device compliance policy

  • Approved application list

What licences do you need to use Mobile Device Management?

The primary licence needed to enable Mobile Device Management and build an autopilot-driven environment is Microsoft Intune.

Intune can be purchased as a stand-alone licence, part of a suite of security products in the Enterprise Mobility and Security (EMS) or as is most common, its obtained as part of the Business premium licence which is packed with all of the products needed to build a Microsoft Modern Workplace.