Reducing the cost and complexity of endpoint management



Similar documents
Simplify security management in the cloud

IBM Endpoint Manager for Lifecycle Management

IBM Tivoli Endpoint Manager for Lifecycle Management

IBM Tivoli Endpoint Manager for Security and Compliance

IBM Tivoli Endpoint Manager for Security and Compliance

IBM Tivoli Endpoint Manager for Lifecycle Management

IBM Endpoint Manager for Mobile Devices

IBM Endpoint Manager for Server Automation

IBM Security QRadar Risk Manager

Strengthen security with intelligent identity and access management

IBM Security QRadar Risk Manager

IBM Endpoint Manager for Core Protection

IBM Security QRadar Vulnerability Manager

IBM Security X-Force Threat Intelligence

Automated, centralized management for enterprise servers

IBM Security Privileged Identity Manager helps prevent insider threats

IBM Security re-defines enterprise endpoint protection against advanced malware

Beyond passwords: Protect the mobile enterprise with smarter security solutions

Leverage security intelligence for retail organizations

IBM Security Intrusion Prevention Solutions

IBM QRadar Security Intelligence Platform appliances

Breaking down silos of protection: An integrated approach to managing application security

IBM SmartCloud Monitoring

Boosting enterprise security with integrated log management

Closing the Vulnerability Gap of Third- Party Patching

Risk-based solutions for managing application security

Safeguarding the cloud with IBM Dynamic Cloud Security

IBM Endpoint Manager Product Introduction and Overview

Preemptive security solutions for healthcare

Applying IBM Security solutions to the NIST Cybersecurity Framework

Move beyond monitoring to holistic management of application performance

IBM InfoSphere Guardium Data Activity Monitor for Hadoop-based systems

Managing and Securing the Mobile Device Invasion IBM Corporation

Data Sheet: Endpoint Security Symantec Network Access Control Comprehensive Endpoint Enforcement

Securing the mobile enterprise with IBM Security solutions

Device Lifecycle Management

IBM Systems and Technology IBM SmartCloud Desktop Infrastructure

Develop enterprise mobile applications with IBM Rational software

IBM Tivoli Netcool network management solutions for enterprise

Selecting the right cybercrime-prevention solution

IBM SmartCloud Workload Automation

IBM PowerSC. Security and compliance solution designed to protect virtualized datacenters. Highlights. IBM Systems and Technology Data Sheet

Provide access control with innovative solutions from IBM.

For healthcare, change is in the air and in the cloud

Deploy secure, corporate access for mobile device users with the Junos Pulse Mobile Security Suite

IBM PowerSC. Security and compliance solution designed to protect virtualised data centres. Highlights. IBM Systems and Technology Data Sheet

Proven LANDesk Solutions

Under the Hood of the IBM Threat Protection System

IBM Tivoli Directory Integrator

IBM Tivoli Netcool network management solutions for SMB

2012 Endpoint Security Best Practices Survey

Microsoft Windows Intune: Cloud-based solution

IBM Tivoli Federated Identity Manager

Endpoint protection for physical and virtual desktops

Kaseya IT Automation Framework

IBM QRadar Security Intelligence April 2013

Altiris IT Management Suite 7.1 from Symantec

Security management solutions White paper. IBM Tivoli and Consul: Facilitating security audit and compliance for heterogeneous environments.

Symantec IT Management Suite 7.5 powered by Altiris

Kaseya White Paper. Endpoint Security. Fighting Cyber Crime with Automated, Centralized Management.

INFORMATION PROTECTED

IBM Security Intelligence Strategy

White paper December Addressing single sign-on inside, outside, and between organizations

Business-driven governance: Managing policies for data retention

IBM Maximo Asset Management Essentials

Symantec Mobile Management Suite

Collaboration solutions for midsized businesses Buyer s guide

Payment Card Industry Data Security Standard

Symantec Mobile Management 7.1

Stay ahead of insiderthreats with predictive,intelligent security

IBM Rational AppScan: enhancing Web application security and regulatory compliance.

Endpoint Protection Small Business Edition 2013?

Security Intelligence

Service management White paper. Manage access control effectively across the enterprise with IBM solutions.

Small and Midsize Business Protection Guide

Malware and Other Malicious Threats

Minimizing code defects to improve software quality and lower development costs.

Endpoint protection for physical and virtual desktops

Symantec Client Management Suite 7.5 powered by Altiris

Addressing IT governance, risk and compliance (GRC) to meet regulatory requirements and reduce operational risk in financial services organizations

Addressing BYOD Challenges with ForeScout and Motorola Solutions

IBM Internet Security Systems. The IBM Internet Security Systems approach for Health Insurance Portability and Accountability Act compliance overview

How To Secure Your System From Cyber Attacks

Protecting against cyber threats and security breaches

Secure Your Mobile Workplace

Transcription:

IBM Software Thought Leadership White Paper October 2014 Reducing the cost and complexity of endpoint management Discover how midsized organizations can improve endpoint security, patch compliance and lifecycle management on a limited budget

2 Reducing the cost and complexity of endpoint management Contents 2 Introduction 2 Thwarting attacks with endpoint management 3 Simplifying patch management 4 Improving lifecycle management 4 Helping ensure compliance 5 Taking control with the IBM Endpoint Manager family 5 Conclusion 6 For more information Introduction While security attacks on big businesses dominate the headlines, midsized organizations are a highly attractive target for cyber criminals. Unlike large enterprises that have large IT departments with dedicated teams focused solely on security, midsized organizations must protect a growing amount of valuable information with limited IT staff and budgets. And the attackers are taking notice targeted attacks aimed at small and midsized organizations are on the rise. What is the true cost of these security breaches? It s not just the lost revenue, compromised data or inadequate compliance that is at stake. Security incidents can lead to a loss of trust among consumers, partners and suppliers, as well as damage to an organization s reputation for years to come. At the same time, preventing security breaches is more challenging than ever. Today s organizations depend upon an evergrowing number of physical and virtual endpoints, including servers, laptops and desktops; tablets and smartphones; and point-of-sale (POS) devices, ATMs and self-service kiosks. These disparate devices run different operating systems and applications, and often access the network from remote locations. As a result, configuration errors, missing patches and compliance gaps are increasingly common. Traditional safeguards can no longer keep up with the latest threats. This white paper examines the need for midsized organizations to combat the expanding sophistication of malicious attacks within the constraints of ever-shrinking IT budgets. It looks at ways to reduce the costs, complexity and resources required for administration. It will also explain how a single, cost-effective solution for endpoint management can help midsized organizations improve patch compliance, visibility and security all within a limited IT budget. Thwarting attacks with endpoint management Traditionally, midsized organizations have turned to multiple products from multiple vendors to patch, manage and secure their diverse endpoints. Patches could be deployed from a USB drive, and compliance reports could be maintained within a few spreadsheets. However, these manual processes are hard to sustain as the organization grows, particularly in distributed environments. Endpoints are increasingly becoming the weakest link in IT security, and the target of more sophisticated attacks. Security administrators need to guard against new types of malicious viruses, worms and spyware, and potential threats are often hidden within web pages and emails. Another security challenge is that more and more employees are working remotely or in branch offices that have no IT staff onsite. These employees may be working off less secure Internet-based connections not necessarily connecting to a corporate virtual private network (VPN). Effective endpoint management is critical in order to protect the entire organization, regardless of where the endpoint is located or how it is connected.

IBM Software 3 What business results can be achieved with IBM Endpoint Manager? In real-world deployments of IBM Endpoint Manager, organizations in healthcare, banking and other sectors have achieved a wide range of positive business results.* reduction in 50% labor costs patch and update 98% compliance rate reduction in 50% helpdesk calls 80% vs. vs. reduction in patch compliance times Increased first-pass patch success rate from 50% to 99% No malware infections since solution implemented *Read the customer case studies at: ibm.com/software/tivoli/solutions/endpoint/casestudies/ Simplifying patch management Whether employees work in the office or remotely, many exposures result from endpoints that lack critical patches or have configuration errors that leave them open to attack. But rapid deployment of security patches can be an overwhelming task for IT staff at midsized organizations. Some organizations attempt to use free patch management products that end up costing them more overall. These free tools often require more infrastructure to use them and more IT staff to manage them, and they typically provide poor results in patch effectiveness and endpoint coverage. For example, Windows-only tools are not able to protect Linux, UNIX and Macintosh systems, or Android and ios mobile devices. And free tools may not protect common third-party applications, such as Adobe applications, which puts organizations at even higher risk. IBM provides a patch management solution designed to help midsized organizations manage the constant flow of patches, and it is available at a price to fit midsized budgets. The IBM solution enables IT administrators to easily apply the correct patches to the correct endpoints, and then verify that the patches are truly applied. By automatically enforcing patch policies, the solution supports continuous patch compliance. With the IBM patch management solution, midsized organizations can: Automatically manage patches for multiple operating systems and applications across a wide range of endpoints, regardless of location, connection type or status Get greater visibility into patch compliance with flexible, near real-time monitoring and reporting See the patch status for all endpoints from a single console Help reduce security risk by streamlining remediation cycles from weeks to hours

4 Reducing the cost and complexity of endpoint management Patch online and offline virtual machines to improve security in virtual environments Patch endpoints on or off the network including devices using Internet connections with minimal endpoint impact, meaning laptops using a public Internet connection at a coffee shop and other roaming devices can still receive patches Improve audit readiness with simple and fast compliance reports Improving lifecycle management As the number and types of endpoints explode, tools for managing the lifecycle of these endpoints become more essential. Key lifecycle management capabilities ranging from software distribution to automated asset discovery are now more cost-effective and easy-to-deploy for midsized organizations. Deploy approved and available software to end users utilizing a self-service portal Manage and enforce password policies, such as password length and complexity, to protect the security of local user accounts Create operator accounts based on group membership Address the full endpoint lifecycle with automated patching and system updates Reduce the clutter and expense of tools from multiple vendors Helping ensure compliance When it comes to security gaps in midsized organizations, cyber criminals are not the only concern. Regulatory agencies, suppliers and the general public are all demanding compliance with the latest security and privacy requirements. IBM offers an affordable lifecycle management solution that is designed to help midsized organizations efficiently manage their endpoints. In addition to automating patch management, the IBM solution provides visibility into what exactly is connected to the network including what software is installed. Administrators can use a single console to discover and inventory resources; distribute and manage applications for Windows, UNIX, Linux and Macintosh systems; and empower end users to deploy applications using a self-service portal. Featuring high levels of automation combined with fine-grained configuration management, the IBM lifecycle management solution enables midsized organizations to: Run distributed scans of their entire network to identify all IP-addressable devices, including computing endpoints, network devices, and peripherals such as printers, routers and switches Automate software distribution across Windows, UNIX, Linux and Macintosh workstations and servers using a high-performance software package library Many midsized organizations need to establish, document and prove compliance with security policies in order to comply with governmental regulations. To operate as a supplier for a large enterprise, midsized organizations are now often required to show proof of compliance as part of the contracting process. IBM provides an endpoint management solution to help midsized organizations enforce security policies and quickly report on compliance helping improve their audit readiness. IT staff can use the IBM endpoint management solution to: Find and fix problems in real time regarding the health, compliance status, and currency of popular third-party anti-virus products from Symantec, Sophos, McAfee, Microsoft, CA, Proventia and Trend Micro, on a variety of operating systems Automate endpoint security configuration management Customize automatic quarantine rules to isolate malware attacks or out-of-compliance endpoints until remediation is complete

IBM Software 5 Help identify and respond to advanced persistent threats within minutes, regardless of endpoint type or location Simplify deployment of other security products Discover and report on all IP-enabled assets, even across heterogeneous operating systems Taking control with the IBM Endpoint Manager family IBM now offers simpler, more affordable solutions for improving endpoint security, patch compliance and lifecycle management as well as power management within midsized organizations. Key solutions from the IBM Endpoint Manager family help provide continuous visibility, control and compliance of endpoints, while reducing costs and the burden on IT staffs. Easy to deploy and manage, the IBM Endpoint Manager family can grow with your organization s needs. IBM Business Partners can help identify the right solutions for your organization, deploy them and provide ongoing support. And because all functions operate from the same console, management server and endpoint agent, adding more services is a simple matter of a license update. IBM Endpoint Manager for Patch Management: Deploy and manage patches across heterogeneous endpoints physical or virtual, on or off the network including Microsoft, UNIX, Linux and Mac OS systems, plus applications such as Adobe, Mozilla, Apple and Java. Compress patch cycles to minutes or hours with up to 99 percent first-pass success rates. IBM Endpoint Manager Starter Kit for Lifecycle Management: Complete administrator control over all endpoints, with visibility into the state of each endpoint from a centralized console. Manage updates with automated software distribution, patch management and self-service portals, and maintain visibility with asset discovery and inventory capabilities. IBM Endpoint Manager Starter Kit for Security and Compliance: Gain real-time visibility of the health and compliance status of endpoints and multiple third-party anti-virus tools. Leverage highly efficient and automated network discovery, self-quarantine of noncompliant devices, and out-of-the-box anti-virus compliance reporting to improve audit readiness and reduce security exposures. IBM Endpoint Manager for Power Management: Easily manage and enforce sophisticated power settings for all endpoints running Microsoft Windows and Mac OS X operating systems. Reduce energy use and costs while avoiding disruptions in systems and security management. Conclusion Today s midsized organizations are faced with the same security concerns as large enterprises without the same budgets or IT resources. Many struggle to secure endpoints from attack using a complex mix of free tools and disparate point solutions. But now, there is an easier way. Using the IBM Endpoint Manager family, built on IBM BigFix technology, midsized organizations can deploy a single, cost-effective solution for endpoint management improving visibility and control within a limited budget. IBM can collaborate with your organization to understand the type of solution that s needed to help drive higher business results, and then help implement that solution to quickly deliver a fast return on investment. And, as your organization s needs change, you can easily extend the IBM Endpoint Manager solution to include additional capabilities.

For more information To learn more about IBM Endpoint Manager, please contact your IBM representative or IBM Business Partner, or visit: ibm.com/tivoli/endpoint Additionally, IBM Global Financing can help you acquire the software capabilities that your business needs in the most cost-effective and strategic way possible. We ll partner with credit-qualified clients to customize a financing solution to suit your business and development goals, enable effective cash management, and improve your total cost of ownership. Fund your critical IT investment and propel your business forward with IBM Global Financing. For more information, visit: ibm.com/financing Copyright IBM Corporation 2014 IBM Corporation Software Group Route 100 Somers, NY 10589 Produced in the United States of America October 2014 IBM, the IBM logo, and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the web at Copyright and trademark information at ibm.com/legal/copytrade.shtml Adobe is a trademark of Adobe Systems Incorporated in the United States, and/or other countries. BigFix is a registered trademark of BigFix, Inc., an IBM Company. Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both. Microsoft and Windows are trademarks of Microsoft Corporation in the United States, other countries, or both. UNIX is a registered trademark of The Open Group in the United States and other countries. Java and all Java-based trademarks and logos are trademarks or registered trademarks of Oracle and/or its affiliates. Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed or misappropriated or can result in damage to or misuse of your systems, including to attack others. No IT system or product should be considered completely secure and no single product or security measure can be completely effective in preventing improper access. IBM systems and products are designed to be part of a comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products or services to be most effective. IBM does not warrant that systems and products are immune from the malicious or illegal conduct of any party. This document is current as of the initial date of publication and may be changed by IBM at any time. Not all offerings are available in every country in which IBM operates. THE INFORMATION IN THIS DOCUMENT IS PROVIDED AS IS WITHOUT ANY WARRANTY, EXPRESS OR IMPLIED, INCLUDING WITHOUT ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND ANY WARRANTY OR CONDITION OF NON-INFRINGEMENT. IBM products are warranted according to the terms and conditions of the agreements under which they are provided. The client is responsible for ensuring compliance with laws and regulations applicable to it. IBM does not provide legal advice or represent or warrant that its services or products will ensure that the client is in compliance with any law or regulation. Please Recycle WGW03033-USEN-01

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information