Mobile Security — Device Threat Protection Through My Verizon Business

Mobile Security in My Verizon Business hardens every employee device against the four threats that dominate small-business breaches: malicious apps, phishing links, unsecured Wi-Fi, and physical device loss. The protection layer runs through a carrier-grade network profile rather than a battery-draining third-party app, so defenses operate silently while employees do their jobs.

Administrators configure the security posture for the entire account or line-by-line from the portal. Phishing URL blocking filters SMS, email, and messaging apps in real time. App scanning checks every install against a threat database updated multiple times per day. Unsecured Wi-Fi alerts warn before a connection exposes session tokens. And remote lock or wipe recovers data integrity when a phone is lost or stolen — all aligned with FCC CPNI rules governing customer proprietary network information.

Access Portal Security Controls

Mobile Security console in My Verizon Business showing threat map, blocked URLs, and device compliance status

AI Summary — Mobile Security Coverage at a Glance

App scanning checks every installed application against a real-time mobile threat database
Phishing URL blocking filters SMS, email, and messenger links at the DNS layer before the page renders
Unsecured Wi-Fi alerts warn employees connecting to open networks, with optional auto-disconnect
Remote lock secures devices within 30 seconds of the administrator command for lost or stolen phones
Remote wipe performs a factory reset across all data — audit-logged with user ID, timestamp, and IP address
Device location on-demand from the portal — no continuous tracking, employee sees a transient notification
Included in Business Unlimited Plus and Pro; add-on for Start plans at $5 per line per month

App Malware Scanning

Every app install triggers a check against the Verizon threat database. Flagged apps surface in the administrator dashboard and on the user's device with removal guidance. Real-time updates from CISA advisories.

Phishing URL Blocking

SMS, email, and messenger links route through DNS-layer filtering. Malicious URLs fail to resolve and the user sees a security notice. No client-side battery drain — blocking happens upstream on the Verizon network.

Wi-Fi Network Alerts

When a device connects to an open or captive-portal Wi-Fi network, the OS surfaces a security warning. Administrators can policy-enforce disconnection from open networks in high-sensitivity roles (finance, legal, executive).

Lost Device Recovery

Remote lock, remote wipe, and on-demand location — initiated from the portal or the My Biz App. Queued commands execute when the device reconnects. Network block prevents offline device abuse.

30s Remote Lock Latency

<1% Battery Impact

24/7 Threat DB Updates

7yr Audit Log Retention

Mobile Security device view showing app scan results, threat indicators, and resolution steps

On-Device Protections

Mobile Security deploys through a Verizon configuration profile on iOS and a managed configuration on Android — no separate app install, no third-party account creation. The profile subscribes the device to real-time threat feeds and enables the operating system's native inspection APIs (Play Protect extended on Android, Application Notary checks on iOS). When an employee sideloads or installs an app from a flagged developer, the profile surfaces a notification within seconds.

Phishing URL checks integrate with Safari and Chrome via the operating system's content blocker framework. SMS and messaging apps flag suspicious links without opening them. Administrators review blocked events in the security console, filtered by line, device, or threat category.

Network-layer filtering showing DNS request interception and phishing URL block statistics

Network-Layer Protections

At the network layer, Verizon operates DNS-level filtering that intercepts requests for known malicious domains before they reach the device. This protection works against threats that on-device antivirus misses — a novel phishing page served over HTTPS from a legitimate-looking domain still fails to resolve if the domain is categorized as malicious in the threat feed. CISA Known Exploited Vulnerabilities feeds contribute to the database along with commercial threat intelligence.

Session encryption through 256-bit TLS protects data in transit. Unsecured Wi-Fi alerts warn when a session is at risk of downgrade attacks. Remote lock commands execute at the network layer, blocking Verizon service on the device until the passcode is entered, even if on-device connectivity is restricted.

Remote lock and wipe control panel with device inventory and audit log export

Remote Lock, Wipe, and Location

The lost device workflow starts with the notification from the employee or manager — usually a phone left in an Uber or stolen from a job site. Administrators select Remote Lock from the line detail page and the device locks within 30 seconds if online, or on next connection if offline. Remote Wipe issues a factory reset and nulls the SIM profile, rendering the device unusable for recovering data.

On-demand device location uses GPS, Wi-Fi triangulation, and cell tower positioning to place the device within 10 meters outdoors or 30 meters indoors. The employee sees a transient notification that the administrator requested the location — this visibility aligns with FCC CPNI privacy expectations. Location requests are logged for seven years.

Security Feature	Business Unlimited Start	Business Unlimited Plus	Business Unlimited Pro
App Malware Scanning	Add-on ($5/mo)	Included	Included
Phishing URL Blocking	Add-on ($5/mo)	Included	Included
Unsecured Wi-Fi Alerts	Add-on ($5/mo)	Included	Included
Remote Lock	Included	Included	Included
Remote Wipe	Not available	Included	Included
On-Demand Device Location	Not available	Included	Included
Auto-Disconnect Open Wi-Fi	Not available	Not available	Included
Application Allow/Block List	Not available	Not available	Included
Geofence Alerts	Not available	Not available	Included
Audit Log Export	Not available	90 days	7 years (CPNI-aligned)
Compliance Reporting	Not available	Basic	SOC 2 / ISO / CPNI
Typical Use Case	Contractors, retail	Professional services	Finance, legal, healthcare

Compliance aligned with FCC CPNI retention requirements and NIST Cybersecurity Framework controls.

Security Event Dashboard

The dashboard ranks events by severity: critical (remote lock triggered, malware quarantined), high (phishing click blocked, unsecured Wi-Fi connection on restricted line), medium (outdated OS detected, weak passcode flagged), and informational (new app installed, OS update completed). Each event links to the line, the device, the affected employee, the time, and the remediation status. Administrators can filter by severity, category, department, or time window and export filtered events to CSV for further analysis. Events auto-archive after 90 days on Plus and after 7 years on Pro.

Compliance Documentation

Mobile Security on Pro plans generates compliance reports aligned with SOC 2 Type II, ISO 27001, and FCC CPNI annual audit requirements. Reports include device inventory snapshots, patch compliance, security event summaries, remote command logs, and policy exception counts. The reports are delivered monthly to the designated compliance contact and retained for seven years per CPNI rules. Independent auditors can be granted read-only access to the compliance module for their annual review without exposing operational data.

"One of our field techs clicked a phishing SMS. The URL was blocked at the DNS layer. No compromise. I got the alert and used it as a training example for the whole team."

Priya Sharma — IT Lead, Construction Firm (120 employees)

"Our CFO's iPhone was stolen at an airport. Remote wipe ran within 90 seconds. No data exposure despite the thief keeping the device powered for three hours."

Ken Ishikawa — Controller, Mid-Size Law Firm

"Wi-Fi alerts stopped a sales rep from logging into our CRM on a fake airport network. The auto-disconnect policy saved us from a session hijack."

Samantha Wu — Security Officer, Regional Bank

Enable Mobile Security for Your Lines

Turn on Mobile Security from the portal in under two minutes for any active line. Plus and Pro plans include it at no extra cost. Pair with usage alerts and notification routing to keep the whole workforce monitored end to end.

Access Portal Contact Support

What does Mobile Security protect against?

Four threats: mobile malware via app scanning, phishing URLs via DNS-layer blocking, unsecured Wi-Fi via alerts, and device loss via remote lock, wipe, and on-demand location.

Which plans include Mobile Security?

Included in Business Unlimited Plus and Pro. Add-on for Start plans at $5/line/month. Apply account-wide or selectively per line.

How does remote lock and wipe work?

Administrators select the line and click Remote Lock or Remote Wipe. Commands execute in under 30 seconds if the device is online, or queue until reconnection. All commands are audit-logged with user ID, timestamp, and IP address.

Does Mobile Security track employee location?

No continuous tracking. Location is available only on-demand via lost-device workflow. The employee's device displays a notification when the administrator requests location, preserving awareness per FCC CPNI privacy expectations.

Does the security app slow down the phone?

No. Delivered via a carrier network profile, not a third-party app. DNS-layer filtering adds no client-side overhead. Independent tests show less than 1% battery impact and no measurable slowdown on modern devices.