MobileIron Cloud Security
The MobileIron Cloud service is MobileIron’s cloud-based solution for provisioning and managing users’ bring-your-own-device (BYOD) and corporate-owned personally enabled (COPE) mobile devices. MobileIron Cloud enables IT administrators to deploy and enforce corporate security policy, deploy and manage enterprise apps, and establish usage policies for apps and content. The MobileIron Cloud service implements numerous technical security controls designed to help secure and isolate enterprise data at rest and data in motion, and to ensure the user’s personal data remains private.
MobileIron Cloud is Service Organization Controls (SOC) 2 Type II compliant, which ensures the security, availability, confidentiality, and privacy of its systems. The security controls and compliance factors are described further within this document.
In addition to our SOC 2 Type 2 certification, MobileIron Cloud has been granted the Federal Risk and Authorization Management Program (FedRAMP) Authority to Operate (ATO) from the United States Postal Service (USPS). MobileIron Cloud’s solution successfully completed rigorous testing conducted by an accredited and independent FedRAMP Third-Party Assessment Organization (3PAO), which complies with the security controls of a FedRAMP authorized moderate impact level system. In addition, MobileIron Cloud performs continuous monitoring as defined by FedRAMP, and is audited annually by the U.S. Government. The complete list of FedRAMP moderate impact level security baseline requirements are itemized within the following spreadsheet.