Mobile Devices Toolkit
"This toolkit provides a documented approach for evaluating Agency controls to determine if they sufficiently mitigate the risks associated with Agency owned and managed mobile devices. Specifically to determine if controls safeguard the confidentiality, integrity, and availability of Agency data and information technology resources. Questions and inquiries within the tool-kit address high level control objectives as identified from applicable controlling laws, rules, and regulations as well as identified best practices.
The auditor completes the assessment utilizing interviews of individuals performing tasks to satisfy the policy statements, best practices, and regulatory requirements. Once complete, the appropriate management will confirm the accuracy of the assessment. Corrections/revisions should be incorporated into the assessment as necessitated through a confirmation process.
An automatically calculated percentage will gauge the impact magnitude of the control objectives and scoring will be provided in summary form in the final report."