Finding Mobile device security training courses for IT admins

Expert Davey Winder suggests some good security training courses for the IT administrator who must manage their organisation’s mobile devices.

Are there any good courses covering mobile security for the IT administrator? It seems most mobile security courses are targeted at developers, but I need mobile security training from an administrator’s perspective.

Ask a question

Davey Winder, one of's resident security experts, is standing by to answer your questions. Submit your questions today. (All questions are treated as anonymous.)

Mobile security is relatively new in the world of courses and certifications. Mirroring the growth of both wireless networking and mobile device uptake within the enterprise, there has been an explosion of courses aimed at the IT security professional in recent years. Those pursuing a Certified Information Systems Security Professional (CISSP) credential will need to demonstrate a broad level of competence across a number of Core Bodies of Knowledge (CBKs), which include mobile security.

It's true there are many more courses aimed specifically at the developer audience, but IT security professionals are not being ignored: you just need to know where to look. Here is my suggested list of mobile device security training, including online, on-site or self-study course options.

GSM, GPRS and UMTS Security
Provider: Lever
Location: On-site, scheduled and virtual
Description: This is a three-day course that educates security professionals in the specific security requirements and mechanisms used in global system for mobile communications (GSM), general packet radio service (GPRS) and universal mobile telecommunications service (UMTS) networks. Topics covered include authentication and authorisation, encryption and key management, the role of lawful interception, security risks and threat scenarios.

Mobile Device Security
Provider: SANS
Location: Online (Virtual Live Training)
Description: This course teaches the threats organisations are exposed to from mobile devices used within the enterprise, exploring both the workings of those threats and the solutions to remediate them. This virtual live training class covers Android, BlackBerry, iOS and Windows Mobile platforms and devices. It also takes a detailed look at mobile device security policies, discussing the changes to existing policies that may be required in order to face the challenges that the bring-your-own-device (BYOD) culture has imposed upon businesses.

Certified Wireless Security Professional (CWSP)
Provider: CWNP
Location: Self-study (plus Web-based testing)
Description: This vendor-neutral course leads to a professional-level Certified Wireless Professional certification for knowledge of, and ability to deal with, securing enterprise Wi-Fi networks from hackers. Students will learn about WLAN discovery techniques, Wi-Fi protocol analysis,wireless intrusion prevention systems (WIPS) implementation, managed endpoint security systems authentication and key management protocols. The course includes a self-study kit comprised of study guides and access to a Web-based practise test site.

Read more on Security policy and user awareness