Managing Remote and Mobile Workers Adam Licata, Enterprise Mobility SE, TSO Brian Sheedy, Sr. Principal TEC, Endpoint Management Managing Remote and Mobile Workers 1
Today s Workforce 79% employees favor working remotely 87% use a laptop 80% use a smartphone 49% use a tablet Source: Gallup Poll 4/30/14 http://www.gallup.com/poll/168794/workers-upside-staying-connected-work.aspx Managing Remote and Mobile Workers SYMANTEC VISION 2014 2
SYMANTEC VISION 2014
SYMANTEC VISION 2014
Ownership Irrelevance BYOD, CYOD, COPE, etc. Security requirements do not change Protect the data, apps, and resources Solution should support multiple models Source: Gallup Poll 4/30/14 http://www.gallup.com/poll/168794/workers-upside-staying-connected-work.aspx Managing Remote and Mobile Workers SYMANTEC VISION 2014 5
Manage BYOD and Corporate Devices BYOD Unmanaged Managed Unmanaged Device Corporate Device Managed Apps & Data Only Application Management Threat Protection Managed Personal Device Identity Management 3 Device Management Application Management Threat Protection Identity Management Device Management Application Management Threat Protection Identity Management Company Owned 1 Personally Owned 2 Symantec Enterprise Mobility SYMANTEC VISION 2014 6
Productivity vs. and Security Users choose path of least resistance to get the job done Enable them, don t disable Choose least invasive security approach Account for ownership model Productivity Security Managing Remote and Mobile Workers SYMANTEC VISION 2014 7
Device Consistency Implement security for both mobile and desktop Be aware of unique risks to mobile Physical access Location Personal use Untrusted App Stores Managing Remote and Mobile Workers SYMANTEC VISION 2014 8
Focus on Apps Cannot assume the device is secure Apps handle sensitive data At rest In motion Leverage MAM for mobility App wrapping Containerization Sandboxing Managing Remote and Mobile Workers SYMANTEC VISION 2014 9
Approaches to App Security Containerization Done in one of three ways: 1. Encrypted Sandbox 2. Hypervisor 3. Wrapping App Wrapping Isolates and encrypts Per app container Allows/disallows OS or app access in/out of the container Most require code edits Important! Solution re-signs app w/out code change No rooting or jailbreaking required Integrated access control Managing Remote and Mobile Workers SYMANTEC VISION 2014
VPN is not the Answer Do not rely on VPN for remote management Users do not consistently use VPN Causes obsolete inventory/tracking data VPN is at the device level, not application level BYOD = personal apps accessing corporate networks VPN Concentrator Managing Remote and Mobile Workers SYMANTEC VISION 2014 11
Remote Management with Symantec Mobile Devices (ios and Android) App Center with Secure App Proxy Endpoint Management (Windows) Altiris ITMS with Cloud Enabled Management (CEM) Managing Remote and Mobile Workers SYMANTEC VISION 2014 12
Symantec Secure App Proxy Traffic from personal apps untouched Traffic from Symantec wrapped apps is rerouted to Proxy Symantec App Proxy allows corp traffic through Personal traffic does not traverse corporate network Access to Corporate Network from specific corporate apps only Presentation Identifier Goes Here SYMANTEC VISION 2014 13
Enforce Compliance for Mobile Devices Presentation Identifier Goes Here SYMANTEC VISION 2014 14
Boundaryless Endpoint Management Managing Remote and Mobile Workers 15
Common IT challenges How do I manage users who rarely connect to the corporate network? How do I manage all the new devices and software coming into my environment? How can I make sure we are not over or under buying software licenses and are in compliance with our license agreements? How do I protect my corporate assets and network from vulnerabilities? Managing Remote and Mobile Workers SYMANTEC VISION 2014 16
How does Symantec Endpoint Management address these challenges? Managing Remote and Mobile Workers 17
Manage anywhere across remote sites and users Symantec Endpoint Management Securely manage users anywhere on the internet and eliminate the need for dedicated VPN or leased lines Easily support and manage distributed locations regardless of bandwidth constraints Travel Home Maximize administrator to managed device ratios Remote Office Cloud Enabled Management for Windows Managing Remote and Mobile Workers SYMANTEC VISION 2014 18
Cloud Enabled Management External DMZ Internal Internet CeM Agent External Firewall Internet Gateway Internal Firewall Notification Server (SMP) Secure connection No VPN required Gateway blocks un-trusted connections Managing Remote and Mobile Workers SYMANTEC VISION 2014 19
CeM Architecture External DMZ Internal Internet CeM Agents Internet Gateways Notification Servers Managing Remote and Mobile Workers SYMANTEC VISION 2014
Cloud Enabled Management Functionality in ITMS 7.5 Symantec Endpoint Management CeM for Windows endpoints Inventory Gathering Software Distribution Application Metering Patch Management Basic Client Tasks Hierarchy and Replication Managing Remote and Mobile Workers SYMANTEC VISION 2014 21
End-to-end software management Symantec Endpoint Management Common data model provides a single place for purchases/contracts, single definition of software, single interface for different users Advanced reporting supports financial costs, departmental expense for chargeback, alerts on renewal activities, and trending over time Automatic harvesting processes Single click application virtualization Deploy, update, and run SEP Managing Remote and Mobile Workers SYMANTEC VISION 2014 22
Broad patch management Symantec Endpoint Management Support for multiple platforms and over 50 non-microsoft applications including all browsers and plug-ins Routine analysis and compliance enforcement of applied patches Advanced analytic reporting and metrics Automation routines to simplify process Integration with Symantec s endpoint security, compliance and data loss solutions Managing Remote and Mobile Workers SYMANTEC VISION 2014 23
Data insight for faster remediation and planning Symantec Endpoint Management Easily access and share business data Measure improvement with key performance indicators (KPIs) Analyze trends over time Powerful on-the-fly reporting and charts Fast remediation with dynamic, actionable summaries Managing Remote and Mobile Workers SYMANTEC VISION 2014 24
Free yourself from the office ios Remote Access Console Consistent experience from the ipad to the Console Fast access to device summaries Quickly verify status of policies and tasks Remediate issues, including remote control Managing Remote and Mobile Workers SYMANTEC VISION 2014 25
Thank you! Copyright 2014 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice. 26
Symantec Endpoint Management IT Management Suite Client Management Provisioning Inventory Software management Patch management Application virtualization Remote management Reporting and analytics Server Management Provisioning Inventory Software management Patch management VM management Server monitoring Reporting and analytics Asset Management Asset tracking Barcode scanning Contract management Compliance Reporting and analytics Complementary Solutions Mobile Management Endpoint Protection Data Loss Prevention Encryption Managing Remote and Mobile Workers SYMANTEC VISION 2014 27
Solution Overview: Mobile Management Suite App Center Unified Management Platform App Management Threat Protection Device Management Enterprise Mobility - Customer Update SYMANTEC VISION 2014 28