Introduction

Purpose of the IT measurement document

The purpose of an IT measurement document is to establish a set of metrics to evaluate the performance and effectiveness of an IT system, process. Following methods and tools that will be used to collect and analyze data, as well as the roles and responsibilities of stakeholders involved in the measurement process.

Overview of the importance of IT security

IT security is essential for protecting an organization's assets, maintaining compliance, and ensuring business continuity. It is a critical component of an organization's risk management strategy and requires ongoing attention and investment to keep pace with evolving threats and technologies.

Endpoint Protection

Endpoint Protection refers to the practice of securing endpoints, which are remote computing devices that access a network. It involves protecting laptops, desktops, mobile devices, and other endpoints from potential cybersecurity threats, such as viruses, malware, and other malicious software.

At Dwarves Foundation we use Hexnode MDM as an endpoint protection solution, which offers a wide range of features designed to safeguard an organization's devices from a variety of threats:

Hexnode MDM provides:

• Real-time monitoring and alerts
• Antivirus and malware protection to prevent attacks on endpoints such as desktops, laptops, and mobile devices.
• Restrict access to unauthorized applications and websites, and enforce compliance policies.

Types of endpoint protection measures

• Authorized Applications

  • Maintain the full list of allowed apps which would be installed on the devices.

    

  • Developers do not have the authorization to install or remove applications on their own account. They must request the installation or removal of an application from an administrator. Once a request is made, the administrator will then install or remove the application from the admin dashboard. This process helps to ensure that only authorized applications are installed or removed and that the system remains secure.

    

  • Securely deploy corporate apps on employee devices. Manage upgrades and downgrades seamlessly.

    

  • Black/white list applications.

    

• Content

  • Ensure managed access to content with real-time distribution to specified location within the device.

    

  • Ensure that sensitive content is only accessed by applications deemed safe by the admin.

• Security

  • Secure, encrypt, lock or even wipe corporate data.

    • Passcode is required:
      • Alphanumeric
      • Minimum Passcode Length is 8
    • Auto lock in 15 minutes

    

  • Automatic compliance monitoring. Alerts on compliance violations.

  • Enforce auto lockdown of corporate devices when they stay offline for a specified number of days.

• Remote control

  • View device screen in real-time where the highest level of security is necessary.
  • Provide real-time assistance to users. Identify and troubleshoot issues first-hand.

• Geofencing

  • Find the exact location of your devices.

    

  • Auto enforce restrictions: Assign policies with restrictions or lockdown on dynamic groups to have all the location non-compliant devices automatically restricted.