What MDM does
Mobile Device Management solutions like Microsoft Intune provide centralised control over mobile devices – smartphones, tablets, and laptops – accessing organisational resources. This includes enrolment methods like Autopilot and Android Enterprise, enabling configuration profiles, compliance policies, and application deployment. A core function is the ability to remotely wipe devices, ensuring data security if a device is lost or compromised. MDM provides visibility and control over device posture, application usage, and data access.
MDM in Australian tenants today
In the AU mid-market, organisations often face a choice between MDM and Mobile Application Management (MAM). MDM manages the entire device, while MAM focuses solely on corporate applications. The decision depends on factors like device ownership (company-owned vs. BYOD) and risk appetite. Conditional Access policies in Azure Active Directory leverage both MDM and MAM signals to grant access based on device health and application security posture, aligning with principles outlined in the ACSC Essential Eight and APRA CPS 234 for data security and resilience.