DSS ITSEC Webinars 2013 - Network Access Control + Mobile Security (MobileIron)
•
1 recomendación•1,744 vistas
Network Access Control is used to control access to enterprise networks. Mobile Device Management is used to manage and secure mobile devices. Put them together and your customers can set network access policies based on knowledge of the device - the Power of Two! Forescout is global leader in NAC. MobileIron is global leader in MDM/MCM/MAM and Secure Mobile IT.
Recomendados
Recomendados
Más contenido relacionado
La actualidad más candente
La actualidad más candente (19)
Similar a DSS ITSEC Webinars 2013 - Network Access Control + Mobile Security (MobileIron)
Similar a DSS ITSEC Webinars 2013 - Network Access Control + Mobile Security (MobileIron) (20)
Más de Andris Soroka
Más de Andris Soroka (20)
Último
Último (20)
DSS ITSEC Webinars 2013 - Network Access Control + Mobile Security (MobileIron)
- 1. The Journey to Mobile First Nigel Hawthorn EMEA Marketing Director
- 2. 2 MobileIron Confidential2 MobileIron Confidential Growth of Mobile Devices
- 3. 3 MobileIron Confidential3 MobileIron Confidential Evolution of Personal Computing SOURCES: Asymco.com, Public Filings, Morgan Stanley Research, Gartner, IDC The PC/Web Era The Post-PC EraThe Mobile First Era
- 4. 4 MobileIron Confidential4 MobileIron Confidential Gartner, Inc: “Magic Quadrant for Mobile Device Management Software” by Phillip Redman, John Girard, Terrence Cosgrove, and Monica Basso (May 23, 2013) This Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from MobileIron. 250+ Of Fortune 500 / Global 2000 97% Customer support satisfaction 5000+ Customers globally 2007 2009 V1 innovations • Enterprise app store • BYOD privacy • Selective wipe • Access control • Real-time cost mgmt Company founded • Purpose-built for multi-OS Mobile IT • Coined “Mobile First” Fastest growing global mobile mgmt vendor 2013 Magic Quadrant for Mobile Device Management Software Reprint available from MobileIron
- 5. 5 MobileIron Confidential5 MobileIron Confidential Multi-OS Management Security Compliance Consumer Speed User Driven Device Choice User Experience Micro-Mobile Apps Secure and manage mobile apps, documents, and devices Mobile IT The Birth of Mobile IT
- 6. 6 MobileIron Confidential6 MobileIron Confidential “How do I manage the explosion of operating systems?” “How do I distribute apps and embrace BYOD?” “How do I secure and mobilize content?” “How do I manage security, identity, and privacy?” “I need to move at consumer speed, without sacrificing security and compliance”
- 7. 7 Definition… Mobile First organizations embrace mobility as their primary IT platform in order to transform their businesses and increase their competitiveness Content of all types is easily and securely available on any device CONTENT End users choose their devices Security is invisible to end users User experience is the #1 design criteria USER EXPERIENCES New apps are developed and delivered to mobile devices first Core business processes can be performed on any device APPLICATIONS In a Mobile First Company…
- 8. 8 MobileIron Confidential8 MobileIron Confidential MOBILE CONTENT MANAGEMENT • Secure content hub on device • DLP for email attachments • Remote SharePoint access • Secure intranet browsing MOBILE APP MANAGEMENT • Scalable storefront for delivery • Data containerization for DLP • Dynamic policy & configuration • Secure enterprise app persona • App-specific tunneling • … for in-house & public apps MOBILE DEVICE MANAGEMENT • Purpose-built multi-OS security • Self-service provisioning/config • BYOD privacy protection • Certificate-based identity • Global scale for cloud & premise Complete Solution for Mobile IT
- 9. 9 MobileIron Confidential9 MobileIron Confidential Mobility Discussion – Not Just Security Privacy, legal, HR BYOD CYOD (tax) Content Management Help Desk Costs Device Management App Management Complexity Which OS, devices App Development User Enablement Cost of Devices Roaming Costs Network Integration
- 10. 10 MobileIron Confidential10 MobileIron Confidential10 Enable global companies to become MOBILE FIRST organizations… …by delivering the MobileIron Mobile IT Platform to manage mobile Applications, Content and Devices
- 11. 11 MobileIron Confidential11 MobileIron Confidential MOBILE IT User-Led IT at Consumer Speed Devices Apps Content Multi-OS Device Choice Apps Explosion Content Ubiquity Separation of Personal and Corporate Security and Compliance
- 12. 12 MobileIron Confidential12 MobileIron Confidential Purpose-built for Mobile IT, the MobileIron Platform manages and secures apps, documents, and devices. Our Platform…
- 13. 13 MobileIron Confidential13 MobileIron Confidential MobileIron Platform An End-to-End Solution for Mobile IT End-User Services Complete Mobile IT Management Platform
- 14. 14 MobileIron Confidential14 MobileIron Confidential MobileIron VSP: Mobile Policy & Configuration Engine • Extensibility APIs • Rules • Reporting • User self-service • Identity and certs • Email • Data • PKI • Content • Apps • Directory Back-end Integration
- 15. 15 MobileIron Confidential15 MobileIron Confidential MOBILE CONTENT MANAGEMENT • Secure content hub on device • DLP for email attachments • Remote SharePoint access • Secure intranet browsing MOBILE APP MANAGEMENT • Scalable storefront for delivery • Data containerization for DLP • Dynamic policy & configuration • Secure enterprise app persona • App-specific tunneling • … for in-house & public apps MOBILE DEVICE MANAGEMENT • Purpose-built multi-OS security • Self-service provisioning/config • BYOD privacy protection • Certificate-based identity • Global scale for cloud & premise Complete Solution for Mobile IT
- 16. 16 MobileIron Confidential16 MobileIron Confidential • Policy-based access control • Two-phase authentication • Secure tunneling for email, apps, docs, and web MobileIron Sentry: Security for Data-in-Motion
- 17. 17 MobileIron Confidential17 MobileIron Confidential MobileIron End-User Services Device Choice Apps Content Email Native experience Data separation: business vs. personal Shared policy Browsing Selective wipe
- 18. 18 A End User Services Device Configuration and Docs@Work (Sharepoint Docs) Native Email Support with Secure Attachment and DLP Apps@Work Enterprise App Store Multi-User Support Native Device Experience Single Sign-on
- 19. 19 MobileIron Confidential19 MobileIron Confidential MobileIron Deployment: Cloud or On-premise Global scalability Trusted services
- 20. 20 MobileIron Confidential20 MobileIron Confidential Current or upcoming apps MobileIron AppConnect: Apps Ecosystem Subject to change. Logos displayed are the property of third parties.
- 21. 21 MobileIron Confidential21 MobileIron Confidential Journey to the Mobile First Enterprise Device Security BYOD (user choice) Email access (secure ActiveSync) Multi-OS security (BlackBerry replacement) App & Content Enablement 1st gen of mobile apps Mobile documents Cloud protections Business Transformation New user & business experiences
- 22. 22 MobileIron Confidential22 MobileIron Confidential Going Mobile First with Purpose-built for Mobile IT Best at apps and security Architected for scale Enterprise-class on-premise or in the cloud Best Technology 97%+ support satisfaction MobileIron University: industry’s first training and certification center Best practice toolkits (BYOD, Apps, Android, Deployment) Deep investment in customer success
- 23. MobileIron Customer Stories Financial Services Healthcare, Pharma & Medical Devices Professional Services Retail & Consumer Goods Government & Education Hospitality Technology & Manufacturing Mobile IT transforms the business of our customers
- 24. 24 MobileIron Confidential24 MobileIron Confidential Click image for story Click image for story Barclays Capital Creating an internal app storefront “My iPad is fully secure. I have an internal app store we deployed with MobileIron and there is heavy mobile device management on it. It knows where it is, and what networks it is allowed to attach to.” “Obviously, you can’t stick [an internal app] into Google’s store or Apple’s store, so you have to be able to deploy it where you want it, very securely. That’s the basis for an internal app store.” Shaygan Kheradpir, COO, Barclays Retail
- 25. 25 MobileIron Confidential25 MobileIron Confidential Click image for story Liberty Mutual Moving to BYOD “MobileIron was chosen as the device management application for the Apple products. The BYOD program now has about 1,000 users” “That was more than we expected,” Chris Moore, Senior Systems Admin
- 26. 26 MobileIron Confidential26 MobileIron Confidential Citadele Bank Security, Choice & Apps “At our bank, employees are free to choose their work device. Some of us prefer iOS-based phones, others choose Android-based ones. This means we have a wide variety of devices from different manufacturers,” Citadele Bank CIO Guntars Andersons The company ultimately chose MobileIron's solution for its data securing capabilities and its usability. Citadele Bank plans to support third party apps to increase employee productivity.
- 27. 27 MobileIron Confidential27 MobileIron Confidential Creating mobile workstations for employees who are constantly on the move Mobile First Case Study Lidl Mobile Office iPad roll out: • Streamlined routine tasks • Apps help the manager with real-time inventory management • Up-to-date and attractive training material • Special offers can be implemented quickly in the store • Data is presented on a mobile device using an intuitive graphic interface Results • Time-savings of 17% • Paper files have nearly disappeared • Improved employee satisfaction and retention
- 28. 28 MobileIron Confidential28 MobileIron Confidential Integration with Forescout NAC Integrated with Mobile Device Knowledge • MobileIron Device Knowledge – OS ver – Jailbroken or Rooted Devices – Authentication – App Details • Forescout Access Policies – Employee Access – Visitor Access – Quarantine (Jailbroken) – Redirect to internal web page – Etc.
Notas del editor
- We are in the middle of major transformation from the PC/Web era to what the industry calls the Post-PC Era. It is happening at a phenomenal pace. But since the introduction of the iPhone then Android, the end user computing world has changed dramatically. People now call it the Post-PC era. But we don’t like to define this era in terms of what it is NOT. We believe that in the same way as the web started as a new technology and quickly became the primary platform for end user computing, we believe that mobility will soon become the primary and preferred end user platform in the enterprise. CLICK - Animate This is why we like to call this new era the MOBILE FIRST ERA CLICK – Next Slide Mobile First definition… -------- Alternative narration This chart shows the end user computing platform evolution over the last 30-40 years. End users have been living in the Wintel monopoly for the good part of the last 30 years. PC and Laptops were the primary means to access applications and data. Click Since the advent of the iPhone and then Android, the end user computing platform landscape has changed dramatically. It is happening MUCH faster than ever before and moving forward it is only going to get more heterogeneous and fragmented. All the IT transformations that happened in the past that have a few things in common: 1 – the vendors who drove the innovation in the previous ERA did not drive the next one. There is a change of guard, new pure players emerge that innovate, deliver value to customers and grow. 2 – the customers who see these changes as opportunity and embrace the change, emerge as the leaders in their markets and in many cases create all new businesses that were not possible before 3 – What is the emerging platform at the beginning of the ERA, quickly become the primary and pervasive computing platform The industry has been calling this the Post-PC era, Click but we don't like this term because it describes this new exciting era in terms of what it is NOT, that is why we call it the Mobile First Era. Next slide. Business User Smartphone Shipments (%) SOURCE: IDC
- Let me start by introducing our company. Funded in Silicon Valley in 2007 with the sole purpose of building a platform to solve the IT challenges caused by the rapid proliferation of corporate and employee owned mobile devices in the enterprise, we have a history of technology innovation and customer success. MobileIron was the company that originated what the industry calls the Mobile Device Management market, but we did not stop there. We invented the concept of a mobile Enterprise App Storefront, pioneered the field of BYOD and tackled problems like privacy and selective wipe. We ended up building a complete Mobile IT Platform to manage Apps, Documents and Devices in the enterprise. As a result, we have more than 4500 successful customers, 200 of the fortune 500. Our customers are happy with our product and service and over the last 12 months we had a 97% customer satisfaction Industry Analysts Validation Don’t take my word for it, t he industry has recognized MobileIron as well – we have consistently been named as the vendor that 1) can best meet customers current requirements for MobileIT and 2) has the vision and ability to support our customers as the Mobile Era evolves and customer requirements advance Gartner: Leaders Quadrant 2013 MDM Magic Quadrant (graph from May 2013) Three years running. IDC: #1 in market share (amongst pure-plays) and#1 growth overall for Mobile Enterprise Management specialists (Sept 2012) Info-Tech: Champion in 2012 MDM Vendor Landscape (Aug 2012) BusinessWeek: One of five hottest enterprise startups (Sept 2012)
- We are at the cusp of the next phase of the mobile tornado that gives birth to a new way of doing IT, mobile IT. In Mobile IT – a new management solution is required – a solution that is designed for the mobile world, sits between users with their favorite devices and back-end enterprise systems, content and applications that they need access to. The mobile IT platform allows IT to focus on Users and the policies that define who gets what when and with what level of security. The good news is that if you, the Mobile IT professional, if you get this right, you can drive this transformation, and become a hero. MobileIron can help you make that happen. This is what MobileIron was built to do.
- Main Point : Mobility means big changes and new challenges for IT It used to be so easy! Ok that may be a “slight” overstatement, but the corporate IT environment used to be much more contained and the IT department used to have much more control. IT determined which devices employees could use, and which applications could be installed on those devices. Access to these applications and corporate content was usually done within the corporate firewall or through a secure VPN connection. The network edge was well-defined and well-protected. Now, employees are bringing their own devices to work and are accessing the network from outside the firewall – they are taking those devices, and the access to corporate content and applications wherever they go – the Network Edge is now wherever your employees are – or wherever their devices end up – and it requires a new approach to access and security. Main Point : So IT is now at the center of everything – and is facing both increased challenges due to the explosion of mobile devices in the enterprise combined with increased expectations from employees. We’ll try to qualify some of those challenges here – and I am sure many of these resonate with all of you. How do I manage the explosion of devices, and applications, in a multi-OS environment? IT used to just manage Windows and Blackberry, now we have iOS, Windows Mobile, Android… How do I distribute apps securely? How do enable an employee to use both business and personal apps on their device? How do I make this self-service to the end-user – basically how do I create a corporate app store? How do I mobilize content? And enable me to manage access to the content on the end-user’s personal device? And how do I do this securely? While complying with employer and government mandated security regulations Bottom Line : Corporate IT must meet the standards set by consumer technology while maintaining security compliance. These are the requirements that we hear from our customers that drove the development of our Mobile IT platform.
- A company is Mobile First when 1 – all new applications and business processes are available to Mobile devices First CLICK 2 – Corporate documents are securely available on any device CLICK 3 – and most importantly, end users choose the device they want to use and security is enforced by IT without getting in the way of an outstanding user experience This last point is paramount. For the first time in the history of IT, we have an opportunity to allow end users to carry out business processes on a device and with a user experience that they love and they WANT to use.
- On top of the VSP we have three main pillars of functionality: Mobile Device management, Mobile Application management and Mobile Content management Mobile Device Management allows IT to embrace modern devices across any mobile OS and provide secure corporate email, automatic device configuration, cert-based security, select wiping for both corporate and employee-owned usage models. - Click Mobile Apps is really the next stage in enabling the workforce to be productive on their mobile devices. It is how to allow them to carry out core business processes. MobileIron Mobile Application Management provides an end-to-end solution to deliver, provision, secure, wipe, mobile apps. It is not just about building an App Storefront, we go beyond that and cover the full lifecycle of mobile apps, from making it available to the storefront for user self-service, to secure apps on the device enforcing authentication and isolating them from other (personal) apps. This process creates secure communication channels between mobile apps managed by our platform on the device so that critical corporate data never escapes from the secure corporate bubble, to create secure communication channels between the apps on the device and the enterprise back end so that data is protected also in motion, without requiring a device-wise VPN. Click The third Pillar is Mobile Content Management. Here we have three main areas of functionality A – The ability to securely mobilize Sharepoint files so that they can be accessed on the devices and securely stored for offline use. B – We secure email attachments so that they are encrypted and can only be viewed with the secure MobileIron Viewer. Native experience for the end user and DLP for the enterprise C – A secure browser that allows user to access HTML content and applications that sits behind the firewall, again without requiring a full blown VPN client on the device. Ease of use for the end user and security for IT.
- Our vision to help organization become mobile-first companies and leverage this user-driven technology transformation to their advantage, to emerge the winner in their respective markets.
- Main Point : The journey to becoming a Mobile First Organization requires a new IT Platform that is specifically designed to manage Mobile Apps, Content and Devices in the Enterprise. We call this Mobile IT The Mobile IT transformation is driven by end-users and IT moves at consumer’s speed to satisfy increased expectations from employees CLICK Users want: Device choice IT needs to: provide multi-OS management and security CLICK Users want: use personal and business application IT needs to: provide a way to create a clear separation between personal and business assets and application that guarantees enterprise security while preserving user privacy. CLICK Users want: ubiquitous access to their content to be productive on any device IT needs to: enable content access with security and compliance These are the top requirements that we hear from our customers that drove the development of our Mobile IT platform.
- MobileIron Mobile IT Platform provides value to both IT, with a solution platform purposely built for Mobile IT, and end users… MobileIron Mobile IT Platform sits between enterprise resources and end user devices and allows IT to define and enforce policies around Apps, documents and Devices and end users to get what they want: device choice, the enterprise apps and data to get the job done without intermixing with their personal stuff.
- The VSP is the core of our platform. Think of it as the brain of the operation, where IT defines the management policies for apps, documents and devices that determines which users get what, when, with what level of security across multiple mobile OSs. Policies can be dynamically changed at run-time without redeployment. At runtime, VSP collects and displays analytics about what happens across users, devices, apps and content. In the back-end, MobileIron platform has a rich set of integration technologies to integrate and leverage existing assets within the enterprise namely email systems, content repositories, identity management, certificates and mobile applications. It also include a rich set of APIs for management automation and integration into the existing IT infrastructure.
- On top of the VSP we have three main pillars of functionality: Mobile Device management, Mobile Application management and Mobile Content management Mobile Device Management allows IT to embrace modern devices across any mobile OS and provide secure corporate email, automatic device configuration, cert-based security, select wiping for both corporate and employee-owned usage models. - Click Mobile Apps is really the next stage in enabling the workforce to be productive on their mobile devices. It is how to allow them to carry out core business processes. MobileIron Mobile Application Management provides an end-to-end solution to deliver, provision, secure, wipe, mobile apps. It is not just about building an App Storefront, we go beyond that and cover the full lifecycle of mobile apps, from making it available to the storefront for user self-service, to secure apps on the device enforcing authentication and isolating them from other (personal) apps. This process creates secure communication channels between mobile apps managed by our platform on the device so that critical corporate data never escapes from the secure corporate bubble, to create secure communication channels between the apps on the device and the enterprise back end so that data is protected also in motion, without requiring a device-wise VPN. Click The third Pillar is Mobile Content Management. Here we have three main areas of functionality A – The ability to securely mobilize Sharepoint files so that they can be accessed on the devices and securely stored for offline use. B – We secure email attachments so that they are encrypted and can only be viewed with the secure MobileIron Viewer. Native experience for the end user and DLP for the enterprise C – A secure browser that allows user to access HTML content and applications that sits behind the firewall, again without requiring a full blown VPN client on the device. Ease of use for the end user and security for IT.
- Sentry is our secure proxy that sits between enterprise system and the devices and enforces the policy that IT defined in the VSP. It encrypts email and attachments and it create a tunnel so that mobile applications can access enterprise data securely.
- Finally, end users get what they want: device choice, with access to their enterprise apps and documents with native user experience and complete separation between enterprise and persona data. The best way to show the value we give to the end-user is to show you the product. <Demo if possible>
- DEMO – Screenshots of services provided to the end user Call out: - Mobile@work -> automatic device configuration and Doc@Work Support for native Email Out of the box support for Enterprise AppStore SSO for the apps in our secure corporate bubble
- The MobileIron platform can be deployed in our cloud that we call the Connected Cloud where we get you set up in less than 30 minutes, or you can host it on-premise as a physical or virtual appliance and start getting value within the first day. Our Connected Cloud has the highest level of security certification in the industry, and our on-premise solution scales to 100k devices on a single appliance giving you the confidence that we can scale with your business without requiring a big investment in hardware infrastructure.
- If we go back to the value for end-users, we believe that the biggest gain for them is to get access to a plethora of applications they need to get their job done. This is why we have been working diligently with a number of developers to enable their applications to be managed by the MobileIron platform. This means that end-users will be able to download these apps from the AppStore just like they usually do and IT has peace of mind knowing that they can set security, authentication, and management policies on these apps via the MobileIron VSP console. These are just some of the apps that are coming to market in Q2 that are AppConnect enabled. <<< This information is subject to change. >>>
- The journey starts by securing devices and providing end-users with their first level of productivity – usually access to email and device configuration. This allows IT to respond to business challenges like BYOD, securing ActiveSync, and BlackBerry replacement But the real benefit of Enterprise Mobility comes when IT and end-users embrace the management and delivery of mobile apps and content – When IT can enable what users are asking for – access to their apps and content from their mobile device with a native experience - while preserving the appropriate level of security and management. And then an organization can truly make the pivot towards being a Mobile First enterprise, which we define and when the Mobile Platform becomes the primary IT infrastructure for delivery of applications and content. Now mobile is a catalyst for real business transformation, with new user experiences and new business processes and business models. Its just like the web era where companies began to look at the web as their primary IT platform – we’re in the early stages of mobile, but the transition is occurring rapidly – with the MobileIron Platform, we can help you meet you current requirements, and can partner with you through your mobile journey, to ensure that you are able to quickly realize the full potential of a secure, scalable, integrated Mobile IT infrastructure. Now that you can secure the device, deploy mobile apps and data, you can embrace mobile and your primary platform for your end users.
- MobileIron is the right choice to embark in your Mobile IT transformation. We have the most innovative technology but also a big investment in the success of our customers On the technology side we have the best technology: Purpose-built for Mobile IT: Other vendors are backing in from legacy businesses, but MobileIron built its platform from scratch with the right long-term architecture. Best at apps : No one else has an architecture than can support an end-to-end mobile apps platform for secure and fast delivery (Apps@Work and App Delivery Network), data-at-rest security (AppConnect), and data-in-motion security (AppTunnel). Best at security : No one else can stop iOS email attachments from being lost to Dropbox. No one else offers integrated security across email DLP, certificate-based identity, app and doc containerization, BYOD privacy protection, and automated closed-loop compliance. No one else has a consistent security and policy framework across enterprise email, apps, docs, and web data. Architected for scale : No one else has single-system scale of 100,000 devices. Enterprise-class on-premise or in the cloud : No one else has the deep installed base on on-premise enterprise along with a trusted SOC 2 audited cloud service. We have also made a deep investment in customer success: MobileIron expertise goes beyond products and technology, we also invest heavily in best practices and education to make our customers successful. Specific program examples Exceptionally high customer support satisfaction, even with the massive customer growth we are experiencing. MobileIron training and certification programs include MobileIron University to train technical staff at our customers on core technologies and the new features of the roadmap as they are launched Best Practice Toolkits to share information that we have consolidated across customers on how they are approaching particular initiatives. We launched our BYOD toolkit in 2011. It contains sample user agreements, security policies, provisioning flows, user surveys, and implementation plans for BYOD rollouts. In 2012 we launched our Apps and Android toolkits. They are available in our support portal at no charge to customers or our systems integration partners. Our Evaluation Companion site brings together all the content necessary to learn MobileIron, prepare for an evaluation, install, and evaluate the software. These are just some of the tools we’ll use to make you successful.
- MobileIron customers are focused on enablement and are transforming their businesses through mobility. >>This is a sample of our customers who have publicly talked about MobileIron. [Each of these logos links to the public story (press, case study or video) about that customer – pick one to describe that is appropriate to your sales situation]
- Slide added by Nigel
- Creating mobile workstations for employees who are constantly on the move Lidl Mobile Office project: equip district managers with iPads to make position more attractive and simplify the business processes with mobile apps: Streamline routine tasks to make more time for focusing on employee development and driving store performance instead of administrative tasks Apps help the manager check inventory and view retail space plans and layouts, and make decisions about what to stock and when Up-to-date and attractive training material helps district manager to teach his staff Special offers can be implemented quickly in the store Data is presented on a mobile device using an intuitive graphic interface Employee Benefits Reduced burden of paperwork through mobile access to all necessary documents using an internally developed mobile app as well as access to key performance indicators Up-to-date information Logistics, product placement in the shops, sales controlling are heavily optimizes by the mobile Lidl apps Results Time-saving of 17% used for employees, store performance, customers and free time Paper files have nearly disappeared Managers really enjoy using the Lidl Mobile Office – employee retention in hard to fill positions More info can be found here: http://www.mobileiron.com/en/company/press-room/press-releases/352-lidl-manages-ipads-and-mobile-apps-conveniently-and-securely-with-mobileiron
- Slide added by Nigel