Mobile Device Management (MDM)

Mobile Device Management (MDM) is a technology and set of policies for managing, securing, and monitoring mobile devices (smartphones, tablets, laptops) used to access organizational resources. MDM solutions enforce security policies on mobile devices — requiring encryption, strong passcodes, remote wipe capability, and application controls.

For defense contractors, MDM is important when employees use mobile devices that may access email or systems containing CUI. Without MDM, a lost or stolen phone with access to your corporate email could expose CUI with no way to remotely remove the data.

Why It Matters

If mobile devices access your CUI environment, CMMC requires appropriate security controls on those devices. MDM provides the technical enforcement needed to ensure mobile devices meet your security requirements and can be remotely wiped if lost or stolen.