Mobile Application Security Questions
We intend to roll out the mobile application solution across our employees. We have some technical queries from the InfoSec team. Can you kindly assist us with seeking the below information
1-Please share the Mobile App setup/integration details from Oracle for review. Initially, IS will need to know the following: 1.Architecture requirements (or change) – i.e. a. Is there any new IT network connection or hardware needed? will the existing security control be affected or changed, including Encryption, IP restriction, etc.?
2.Mobile app security baseline configuration – i.e. a. Who will manage this? b. Is there a baseline document? c. Is encryption applied to user credentials and data in transit, in use, at rest? d. How to enable 2FA? e. Is it possible to restrict access to users in Qatar only?