White Paper

Evolution of Management to Tackle Enterprise BYOD

Prepared by

Berge Ayvazian Senior Consultant, Heavy Reading www.heavyreading.com

on behalf of

www.blackberry.com/mobilefusion

August 2012

Table of Contents

Executive Summary 3

BYOD Drives Enterprise Mobile Device Management 5

Next-Generation Mobile Device Management 7

RIM: Trusted Provider of Enterprise MDM & Security 9

BlackBerry Mobile Fusion to Manage Enterprise & Tablets 10

BlackBerry Balance to Enable Dual-Identity BYO Mobile Devices 12

Assessment of MDM Solution Providers 13

BlackBerry Mobile Fusion Customer Case Study 15

Conclusion 17

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 2

Executive Summary The early days of mobile office were much simpler, at least for IT departments. Mobile workers needing access to corporate email and other enterprise applica- tions were all issued the same device, and it was likely to be a BlackBerry®. In most companies, corporate-liable BlackBerry smartphones were issued to a select subset of employees whose function and productivity required that they have continuous mobile access to corporate email, data and applica- tions. And for these mobile professionals, the security, reliability and manageability of these enterprise smartphones are considered a critical mission of their corpo- rate IT department.

In the InformationWeek, 2012 Strategic Security Survey of 946 enterprise IT and security professionals at North American companies, 90 percent of respondents say they believe mobile devices pose a significant threat to their organizations' security now (69 percent) or that they will (21 percent). The No. 1 and No. 2 concerns: loss of a device that has access to sensitive information or an infected personal device connecting to the corporate network.

Although the capabilities improved and the form factors of enterprise smartphones have evolved continuously as technology advanced over the past ten years, the constant gold standard for mobile device management (MDM) and security has been the highly reliable BlackBerry smartphone, global data network and the secure performance of the BlackBerry® Enterprise Server. With 250,000 BlackBerry Enterprise Servers and 78 million BlackBerry devices in use globally, RIM remains the dominant player in enterprise MDM, and BlackBerry Enterprise Server is by far the most widely deployed MDM solution.

Figure 1 depicts the technical architecture of Traditional Enterprise Mobility in which corporate-liable BlackBerry smartphones are managed by a BlackBerry Enterprise Server and the responsibility for security and usage resided with enter- prise IT. With a BlackBerry-based mobile enterprise solution, security concerns are readily addressed with Enterprise Server, which provides a secure communication solution while offering features like:

· Over-the-air BlackBerry device activation and resetting of device pass- words · Secure access to enterprise email, applications and data behind-the- firewall · Authentication and compliance with more than 550 corporate IT policies · Automated software and application distribution system · Highly secure and reliable mobile infrastructure · Tracking, locking, shutting down or wiping lost or stolen BlackBerry smartphones · Efficient MDM and control by corporate IT department

These benefits of the BlackBerry Enterprise Server have until recently been limited to BlackBerry devices, leaving enterprises with limited options to offer their corpo- rate-liable smartphone users. This has become more problematic, as smartphone market share in the U.S. for the iPhone and Android customer base has been increasing over the past year. The increasing consumerization of mobility and

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 3

company cost-saving measures have combined to pressure corporate IT depart- ments to accept the use of new personal mobile devices and applications inside the enterprise.

Figure 1: Technical Architecture of Traditional Enterprise Mobility

Source: Heavy Reading and BlackBerry

Heavy Reading believes that "bring your own device" (BYOD) and MDM have emerged as critical issues for enterprises and the mobile industry. Enterprises that are implementing BYOD initiatives should start by deploying a next-generation mobile security solution to protect, control and connect BYO Android and iOS devices and a highly scalable MDM solution with an optimal set of features.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 4

BYOD Drives Enterprise Mobile Device Management Mobility has redefined the workplace as the boundaries between personal and professional life, home and office, business travel and in-office productivity are rapidly disappearing. The arrival of 4G and a myriad of new smartphones and tablets is resulting in mobile office "makeover." Today's mobile enterprise users are demanding more. Users want a seamless mobility experience that allows them to work anytime and anywhere, with the same productivity and performance they would get in a traditional corporate office. Management wants to keep increas- ing employee productivity, allow flexibility to work from anywhere and keep people in the field where they can close sales and stay close to the customer.

With the increasing consumerization of enterprise mobility, the use of new personal smartphones devices and applications are being driven by company cost saving measures and the changing expectations of the digital generation. Many mobile workers are pressuring corporate IT to allow personal devices into the enterprise. Rather than carrying two devices for their new 24-hour day, users now want to select their own personal smartphones and use them for entertainment media and content consumption and to gain secure access to their enterprise email applications and corporate data.

This is forcing enterprise IT departments to reassess their mobile user environments and the need to need to centrally manage Android and iOS devices while maintaining BlackBerry Enterprise Server capability is becoming more critical. If you add iPads and other connected tablets to this mix, the challenge becomes even greater. Many of the attractive productivity gains and cost savings of mobility are being threatened as enterprise IT departments are grappling with the security risk linked to the growing influx of personal smartphones and other mobile devices on the job. Employees across the corporate hierarchy look to use these tools for a range of activities, from staying connected and accessing work e-mail, to tap into corporate data and applications while on the go.

We call this phenomenon the "enterprise mobility paradox." Although many of these same corporations offer most their valued employees a BlackBerry that is supported by a BlackBerry Enterprise Server, some employees resist having to carry a separate, "secure" smartphone. Corporate IT departments large and small are being asked to adopt policies that embrace a broader variety of personal mobile devices and CIOs now find themselves with a new challenge – balancing enter- prise security and uncontrolled costs often associated with the personal smartphones, tablets and other "bring your own devices" (BYOD) that are becom- ing an inseparable part of the lives of mobile workers.

The InformationWeek 2012 Mobile Security Survey of 322 business technology decision-makers involved with MDM, policy development and/or security at North American companies shows an alarming number of organizations making "ad- justments" to their security policies in key areas based on the capabilities of the personal mobile devices allowed into the enterprise. Fully 86 percent of survey respondents permit use of personally owned devices now or are moving that way. These IT managers now need help to cope with the reality of personal smartphones in the enterprise workspace, and are taking an array of approaches to managing and securing employees personally owned mobile devices. But supporting BYO devices isn't as easy as traditional corporate-liable smartphones since they can't be managed by existing BlackBerry Enterprise Servers, and for some IT departments this is creating a security risk and a management nightmare.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 5

Heavy Reading and InformationWeek define "enterprise-ready" mobile operating systems as those that have been purpose built to provide effective authentication, encryption and enterprise management controls that adequately protect business data. Figure 2 highlights the wide disparity in personally and company-owned mobile devices that are now being allowed to access and store corporate data. On the left are depicted the increasingly popular consumer-grade personal smartphones that are being introduced into the enterprise, often without the benefit of centralized policies, end-to-end security, or server-based device management and monitoring. It is challenging for corporate IT departments to ensure quality and reliability of BYOD performance.

Figure 2: Contrasting Enterprise & Personal Consumer Smartphones & Tablets

Source: Heavy Reading

BlackBerry is the undisputed poster child for "enterprise class" because RIM baked security into the BlackBerry OS, smartphones and BlackBerry Enterprise Server management system. Both Android and iOS were designed for use in consumer devices, while BlackBerry is the undisputed poster child for "enterprise-class" since RIM baked security into the BlackBerry OS, smartphones and BlackBerry Enterprise Server management system.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 6

Next-Generation Mobile Device Management The InformationWeek Mobile Security Survey shows that the issue of mobile security remains at the top of the agenda for many companies as enterprises move to institute bring-your-own-device (BYOD) programs, where employees can use their own mobile devices to access corporate email and other applications or store sensitive business information. This survey reveals a wide disparity in the personal and company-owned devices that are allowed to store corporate data. Among company-owned and supported smartphones, BlackBerry continues to lead the pack, being embraced by 70 percent of responding organizations, Apple iOS comes in second at 62 percent, with Android 3.x and 4.x devices at 42 percent. The earlier Android 2.x models tie with Windows Mobile at 35 percent, and Windows Phone make the cut at 30 percent of organizations.

Even so, many companies are implementing BYOD programs to reduce the cost of corporate-liable devices and provide their employees with the freedom of choice in bringing their personal mobile devices into the enterprise. While 86 percent of respondents to the InformationWeek Mobile Security Survey either allowing or plan to allow personally owned mobile devices, the policies governing them vary widely. Just 40 percent of organizations limit the range of devices supported and require that users connect them to an MDM system. Another 42 percent of responding organizations allow employees to bring in any device and they'll let it on the network as long as the user agrees to certain policies and 10 percent allow user-owned devices with no restrictions whatsoever. In our experi- ence this approach often translates to "trusting users to do the right thing."

Heavy Reading believes there are three essential components of a next- generation enterprise mobile security and device management solution required to tackle enterprise BYOD, as depicted in Figure 3: protect, control and connect.

Figure 3: Enterprise Mobile Security & Device Management Leverage three distinct components to deliver comprehensive Mobile Security for the enterprise:

Protect – Mobile device, enterprise networks, enterprise and personal data

Control – Control access to network resources, Manage devices, and Gain insight into device security posture

Connect – Securely to corporate networks, service provider networks

Source: Heavy Reading

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 7

An MDM solution should protect the mobile device, enterprise networks, enterprise and personal data. It should have the ability to manage and secure a variety of mobile devices, control access to network resources and gain insight into device security posture. Finally, it should facilitate secure connections to corporate networks and service provider networks.

Many companies are now evaluating management platforms to support their BYOD programs. Since BYO smartphones are owned by the end users rather than the corporation, it is often challenging to require standardized configurations and the loading of management agents. The following features are critical elements of a next-generation enterprise MDM platform.

· Configuration Management – Configure mobile devices for optimal per- formance and to meet compliance objectives · Mobile Device Security – Protect tablets and smartphones from malware, spyware, with anti-virus and content filtering · Mobile Enterprise Security – secure mobile enterprise to strict compliance and security standards · Backup & Restore – Save contacts, photos & call history to a single loca- tion and restore to new phone any time · Missing Device – Locate and remotely shut down a lost or stolen mobile device · Remote Lock and Wipe – Lock and wipe data off a phone remotely · Device and Asset Management – Track and manage devices from the cloud · Privacy Protection – Control which apps can access private personal data

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 8

RIM: Trusted Provider of Enterprise MDM & Security Many IT managers are overwhelmed by the challenge of implementing BYOD initiatives and lack guiding principles for extending mobile access to enterprise applications to non-corporate-liable smartphones and tablets. It's one thing to extend wireless access to corporate e-mail to mobile workers. It is quite another to do so in combination with providing real-time mobile access to mission-critical enterprise data and hosted applications such as CRM. These IT decision-makers would benefit from working with an MDM solution provider with extensive experi- ence and the resources needed to tack the challenge of enterprise BYOD.

As depicted in Figure 4, RIM has a long history in MDM, beginning with the first BlackBerry Enterprise Server, version 1.6, released in 1999. There have been continuous enhancements of the platform through BlackBerry Enterprise Server 5.0.3 to improve the management interface and enhance features as wireless calendar and email reconciliation. BlackBerry Enterprise Server is still the "gold standard" as the most secure and feature-rich MDM solution, and it is the only solution that provides preconfigured and custom IT policy management. However, its functionality is limited to BlackBerry smartphones.

Figure 4: RIM BlackBerry – A Rich History in Mobile Device Management

Source: RIM BlackBerry

RIM has been working on how to take the best practices and features from its BlackBerry devices and BlackBerry Enterprise Server platform in addressing enter- prise BYOD. RIM is now embracing enterprise consumerization trends as it contin- ues to help IT organizations manage, control and secure BlackBerry smartphones. RIM is the leading MDM software provider based on its experience, installed base of BlackBerry Enterprise Servers and devices under management.

The size and scope of RIM's MDM support organization has grown throughout the world as a highly scalable resource to support more than 250,000 BlackBerry Enterprise Servers and 78 million BlackBerry devices in use globally. BlackBerry® Mobile Fusion extends this capability to deliver the connected Internet experience for BYOD users with personal mobile devices within the enterprise.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 9

BlackBerry Mobile Fusion to Manage Enterprise Smartphones & Tablets In May 2011, RIM closed the acquisition of ubitexx, German creator of the ubi-Suite MDM solution, to accelerate its internal effort to provide secure device manage- ment for Android and iOS based devices and tablets managed from a single web- based console. Initially envisioned as a multi-platform BlackBerry Enterprise Solution for managing and securing mobile devices, the full version of BlackBerry Mobile Fusion was introduced in April 2012 to complement the market-leading manage- ment, security and controls of the existing BlackBerry Enterprise Server and Black- Berry® Enterprise Server Express for BlackBerry devices. The result is a multi-platform MDM solution designed to enabling IT administrators to configure and manage Apple iOS and Android devices, in addition to existing BlackBerry devices.

BlackBerry Mobile Fusion addresses a growing market and respond to requests from enterprise customers who want a secure multi-platform device management solution from a company that already delivers the gold standard for enterprise mobility. The single web-based console was designed to provide IT administrators with a simple and efficient way to distribute software and manage policies, inventory, security and services for BlackBerry devices, as well as other Android and iOS mobile devices. IT administrators will be able to manage devices over- the-air, including activating devices, distributing software and applications, locking or wiping devices, enforcing and resetting device passwords, setting IT policies, and managing optional mobile applications for end users.

As depicted in Figure 5, BlackBerry Mobile Fusion provides BYOD smartphone and tablets users secure access to corporate e-mail and enterprise applications, along with many of the management and security features that were previously re- served for BlackBerry users supported by a BlackBerry Enterprise Server.

Figure 5: RIM BlackBerry Fusion Mobile Device Management

BlackBerry Mobile Fusion BlackBerry Mobile Fusion Studio Centralized, User- Centric Management Console

BlackBerry Enterprise Server BlackBerry Mobile Fusion BlackBerry Mobile Fusion 5.0 Service Pack 3 or Later BlackBerry Device Service Universal Device Service Bes Express

Android iOS

Future - BB10 Can run with BMF Studio without BDSor BESStudio without BMF with run Can Can run with BMF Studio without UDSor BESStudio without BMF with run Can

Source: BlackBerry

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 10

BlackBerry Mobile Fusion Studio provides a unified, user-centric management console as a centralized interface for enterprise IT administrators. Through this console, administrators can provision, audit and protect both business and personal users, whether they are using Android and iOS smartphones and tablets, PlayBooks and BlackBerry 10 devices or Java-based BlackBerry smartphones.

BlackBerry Mobile Fusion offers RIM the opportunity to leverage its extensive installed base of BlackBerry Enterprise Servers and its unique position as a trusted provider for business and enterprises worldwide to extend MDM and security. BlackBerry Mobile Fusion management software allows IT administrators to config- ure devices, change profiles and handle a wide range of other MDM tasks.

BlackBerry Mobile Fusion can also manage user profiles with more than one device per user, including inventory and asset management, as well as individual apps or software. Certain features remain exclusive to BlackBerry devices because such capabilities are built into the design of a device's operating system. Examples include RIM's industry-leading push technology, network and data usage efficien- cy, behind-the-firewall access to enterprise applications and systems, and many of the over 550 IT policies available through BlackBerry Enterprise Server.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 11

BlackBerry Balance to Enable Dual-Identity BYO Mobile Devices BlackBerry® Balance™ is a technology that allows BlackBerry devices to have a dual identity so they can be used for both personal and work purposes. BlackBerry Balance presents a unified view of work and personal content on the same BlackBerry handset, but separates content into perimeters so that users are able to identify their work and personal areas without compromising functionality.

IT administrators get to set policies via RIM's BlackBerry Enterprise Server or Black- Berry Enterprise Server Express corporate data management software. If a user attempts a prohibited action such as copying and pasting a corporate email into a personal email account, a notification is flagged on the device. Moreover, data generated by business applications, such as CRM or ERP software, cannot be used by personal social network applications such as Facebook and Twitter.

As depicted in Figure 6, BlackBerry Balance allows corporate IT to establish a secure work perimeter for business data and applications and creates a seamless end-user experience for employee-owned devices unrestricted personal use without impacting corporate security. The recently-released BlackBerry Balance technology, which supports the use of a single smartphone for both work and personal purposes without compromising the security of corporate content or the privacy of personal content, will also remain exclusive to BlackBerry devices.

Figure 6: BlackBerry Balance to Enable Dual-Identity Mobile Devices

Source: BlackBerry

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 12

Assessment of MDM Solution Providers This Heavy Reading white paper provides an assessment of the leading solutions available to enterprise IT department to manage BYOD smartphones and provide secure access email and enterprise applications. This white paper highlights the need for enterprise MDM strategies with a focus on BYOD security and policy implementation. Starting with the key requirements for mobile device security, provisioning, remote back-up, this analysis focuses on how this functionality can be integrated into the existing IT management tool kit.

Figure 7 provides Heavy Reading's assessment of the relative positioning of more than 20 of the leading multi-platform MDM vendor solutions addressing the BYOD trends based on the key dimensions of scope and scalability. It also compares the position of BlackBerry Mobile Fusion with several other competing enterprise-grade MDM and security solutions designed to manage a wide range of smartphones, tablets and other mobile computing devices, especially those using the Apple IOS and Android operating systems.

Figure 7: Relative Positioning of MDM Providers Based on Scope & Scalability

Source: Heavy Reading

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 13

Heavy Reading has placed some 20 MDM solution providers in one of four domains based on scope of their offering in terms of the breadth of features and range of devices supported, as well as scalability to support a large number of customers and devices with global requirements. Those in the lower left are relatively young, niche players focusing on customer targets in a specific geo- graphic region or industry segment, or they are smaller companies offering specialized "best of breed" and complementary MDM features such as expense management, security malware and threat detection that are often used in conjunction with broader MDM platforms. Those in the lower right domain, such as IBM, VMware and Sybase/SAP, are larger companies entering the MDM market by leveraging their broad customer base and suite of IT security or network man- agement solutions to which they are adding the management of mobile devices. Those in the upper left domain are also larger companies bringing complementary resources and capabilities to the fast growing multi-platform MDM and security market, such as Symantec, /McAfee, TrendMicro and Juniper Networks.

Heavy Reading has placed six MDM solution providers in the upper right domain, as they provide a fully developed MDM solution with an extensive set of security and management features addressing a broad range of mobile devices and operating systems. These market leaders also demonstrate the scalability to serve a large number of enterprise customers with complex requirements and a large diverse mobile user community with a growing base of BYO smartphones, tablets and other mobile devices. Companies such as Good Technologies have been pioneers in the management of non-BlackBerry devices and have developed unique capabilities to scale as demand for MDM has grown. In this domain, we find also innovative companies such as MobileIron, AirWatch, Zenprise and FiberLink with its popular MaaS360 MDM solution. These fast growing companies are now competing aggressively to market their MDM offerings, expand their sales channels and capture market share.

Among these market leaders, RIM is the largest and most established provider that has extended its MDM solutions to address personal and corporate-liable BYO iOS and Android devices. BlackBerry Mobile Fusion is best suited for those enterprise customers with an existing BlackBerry Enterprise Server infrastructure requiring the most secure, unified multi-platform MDM solution with advanced IT policies and global support. For these companies, BlackBerry Mobile Fusion can integrate with their existing BlackBerry Enterprise Server to provide the most cost-effective, robust and scalable solution for their BYOD initiatives.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 14

BlackBerry Mobile Fusion Customer Case Study In the short time since BlackBerry Mobile Fusion has been available commercially, there are only a few customer cases to review in assessing the benefits and weaknesses of the MDM platform versus competitors. Martha Stewart Living Omnimedia is a unique media company with separate on-line and publishing, broadcast TV and radio and merchandising divisions and more than 1,000 employees. Figure 8 provides a summary of Martha Stewart Living Omnimedia as a BlackBerry Mobile Fusion Customer Case Study.

Figure 8: BlackBerry Mobile Fusion Customer Case Study Martha Stewart Living Evaluated MDM Options and Selected BlackBerry Mobile Fusion · Profile: Martha Stewart Living Omnimedia is a multimedia company with publishing, broadcasting and merchandising divisions. · Industry: Multimedia · Size: > 1,000 employees · Devices: > 200 corporate liable BlackBerry smartphones, and a growing number of BYOD Apple iOS and Android smartphones and tablets · Situation: Martha Stewart Living has a corporate liable base of BlackBerry devices for management and security but was getting significant pressure by employees not eligi- ble for a corporate liable device to use their personal devices for work purposes. Due to the sensitivity of corporate data compromise and inability to manage those devices, Martha Stewart Living had been restricting personal device use until it implemented BlackBerry Mobile Fusion. Source: RIM BlackBerry and Martha Stewart Living Omnimedia http://www.youtube.com/watch?v=tnI61qkQFDI

Steve Rollins, VP of IT at Martha Stewart Living oversees all IT functions at the company, and he reports that enterprise mobility has evolved with user require- ments and varies by division. Martha Stewart Living has been a long term, exclu- sive BlackBerry shop with more than 200 corporate-liable BlackBerry users. At first, BlackBerry smartphone users were most concerned with securely accessing their corporate email after hours. Now the IT department is more concerned with response time – the rapid and secure delivery of mission-critical information and content to mobile workers in certain business units. Other employees are more involved with merchandising, and are less concerned with immediate response time since products don't change so rapidly. The current IT priority is to provide secure access to mission-critical applications to the mobile workers. As a publicly- traded company, Martha Stewart Living can encrypt this highly sensitive data traffic and ensure security using BlackBerry devices and the Enterprise Server, especially for its high-level finance and management staff.

The IT department is also trying to meet the needs of those employees that create mobile content across a variety of platforms and who want to use their own personal iPhone and Android mobile devices for direct consumer interaction through social media. It is now very important to reduce the response time for a wider range of employees responding to events that happen inside and outside the enterprise. This created a dichotomy between BYOD and BlackBerry users, and

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 15

the corporate IT department recognized the need for a cross-platform MDM solution in order to meet the needs of this fast-growing user community.

It wasn't fiscally responsible to issue all of these employees a corporate-liable mobile device of their choice, or to implement a new MDM solution just for iOS and Android devices. After a thorough review of the available MDM solutions, Rollins concluded that BlackBerry Mobile Fusion was simple and easy to fit into its existing MDM infrastructure with minimal upfront and ongoing operating cost. That simplicity and the ability to secure personal mobile devices without assuming any significant cost were the biggest drivers for the selection of BlackBerry Mobile Fusion.

Martha Stewart Living is not replacing existing BlackBerry devices, but is expanding the reach of enterprise data to people who didn't have access before, allowing workers to continue using the smartphone that best suits their particular needs and reducing the number of devices people have to carry. By managing a smartphone employees already have and securely putting enterprise data on their existing BYO devices, the corporate IT department is responding to the business need for MDM more efficiently and cost-effectively.

BlackBerry Mobile Fusion allows the company to leverage its existing BlackBerry Enterprise Server investment and best practices to minimize the number of new corporate-liable mobile devices being deployed, while securing the fast-growing base of personal BYO smartphones or tablets. The result is greater productivity and efficiency without the worry of losing sensitive corporate data while delivering flexibility and choice to BYOD end users.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 16

Conclusion The emergence of BYOD has created a significant challenge for corporate IT departments to address without a large new investment and increasing operating costs. For many, BYOD is intended to save their company money, so the cost to manage and secure these personal devices cannot exceed this potential savings. Yet the security risk of not implementing a proactive, multi-platform MDM solution for BYOD is unacceptable. With more than 100 vendors selling MDM solutions, it is critical for corporate IT executives to carefully evaluate and select the most robust, complete and cost-effective end-to-end solution leveraging best practices for mobile device security, management and policy compliance. Enterprise data and mobile device security should be the highest priority for selecting a multi- platform MDM solution for BYOD iOS, Android and BlackBerry devices. Other considerations include the experience, expertise, reliability, scalability and global reach of the MDM vendor support services.

The need to support BYO smartphones, tablets and their user population is only going to grow over time, and the strategic investment in a multi-platform MDM solution will provide a long term foundation for a company's enterprise mobility strategy. This strategic investment will enable companies to confidently and proactively leverage the power of mobility to drive productivity and use BYOD to enhance employee satisfaction. While selecting vendor, corporate IT should consider whether to host this solution as a server appliance inside the enterprise, as a virtual machine or "in the cloud." The benefits, risks and challenges of BYOD can be best addressed by selecting a proven vendor with an enterprise-class MDM and security solution with the resources and commitment to truly partner with its customers. Fortunately there are several leading vendors that can satisfy these requirements and are prepared to compete for the opportunity with a growing range of features and capabilities.

BlackBerry®, RIM®, Research In Motion® and related trademarks, names and logos are the property of Research In Motion Limited and are registered and/or used in the U.S. and countries around the world. Used under license from Research In Motion Limited.

HEAVY READING | AUGUST 2012 | WHITE PAPER | EVOLUTION OF MOBILE DEVICE MANAGEMENT FOR ENTERPRISE BYOD 17