iPhone Security Could Improve at NCUA: OIG Audit

The NCUA’s Inspector General recommended ways the agency could improve its security policies and controls regarding agency-issued mobile devices, such as iPhones, to enhance the protection of its data and resources.

Image source: Article
The NCUA had been issuing agency-owned iPhones to employees and contractors since April 2012, which could access the agency’s exchange server.

Do you agree with IG's recommendation that the NCUA supplement or enhance its existing mobile device security policies, controls and configuration settings by addressing the security measures, such as passcode guidance or controls, unauthorized applications, container-based encryption, bluetooth controls and QR codes?