The document outlines security best practices for mobile devices including using multifactor authentication with numeric, alphanumeric and biometric methods. It recommends encrypting data at rest, in transit and in use, as well as local password protection and minimal storage of data on devices. The document also suggests separating corporate and personal data on devices, including wiping specific data or entire devices if lost, and using device locators. Secure app development, file sharing restrictions and email access controls are also covered.