McAfee Enterprise Mobility Management Securing Mobile Applications An overview for MEEC
The User is Evolving 2
The User is Evolving 3
IT s Challenge with Mobile Devices Web 2.0, Apps 2.0, Mobility 2.0 Threats Are 60,000 New Pieces of Malware/day HR More than half of all users don t lock their devices IT IT Sales Mobile Devices Predicted to be New Malware Frontier Finance 80% of IT Users Concerned about Device Data Loss 4
Requirements for Secure Application Enablement Enterprise and LOB Apps Basic Services Customer Facing Apps Web and Social Media Required: Data Protection Compliance Authentication Security Policy Management Self-Service Provisioning Enterprise App Management 5
Empowering Enterprise Mobility Secure Manages native security settings Enforces device compliance Extends the security infrastructure via epo Integrates with the data center Easy Simple administration and reporting via epo User self-service provisioning Device personalization for user productivity Scalable Scales to 10s of 1,000s of devices Supports HA and DR configurations Win 7 & WinMo iphone BlackBerry Android webos ipad Symbian McAfee EMM VPN Enterprise Environment Messaging Database Applications Files Directory Certificate Services 6
The Right Life Cycle for Mobile Device Management Enterprise Application Management Make apps available in a secure, role-based way. Offer apps for download, links to thirdparty app stores, and web links. Provisioning Define security policies, network connectivity, and resources; users self-service provision for automatic device personalization. Application Management Provisioning IT Operations Support Visualize and manage devices centrally through McAfee epo integration. IT Operations Support epo Security & Authentication Security and Authentication Enable devices to strongly authenticate against Microsoft CA. Supports two-factor authentication. Compliance Automatically check devices prior to network access. Compliance Policy Management Policy Management Remotely perform helpdesk tasks and push security policies and configuration updates over-the-air. 7
Self-Service Provisioning for iphone 1 2 3 4 Go to the App Store Enter Your Email Credentials Agree to Corporate Policy IT Services are Auto-Provisioned optional Easy, Secure, Automated Easy, Secure, Automated 8
Self-Service Provisioning for Android 1 2 3 4 Go to the Marketplace Enter Your Email Credentials Agree to Corporate Policy IT Services are Auto-Provisioned Easy, Secure, Automated 9
Industry Standard PKI for Strong Authentication Industry-Standard Security: Microsoft Certificate Authority Benefits: Industry-standard security Strong authentication for secure access to communications services such as Wi-Fi and VPN Strong authentication for secure push email and other applications Single sign on for enhanced user experience No impact on battery life 10 10
Enterprise Application Store Recommend and make applications securely available based on group, role, or device type. Custom corporate applications Third-party applications (Apple App Store or Android Marketplace) Webclips Device application inventory, audit, and policy management 11
Centralized Visibility and Control with epo Compliance reports are based on systems we know about 12
Centralized Visibility and Control with epo What we don t manage is where compliance status is unknown 13
Centralized Visibility and Control with epo Bringing all endpoints into compliance status view is critical to assessing risk and prioritizing actions 14
McAfee WaveSecure for User Device Management Lock Your Phone Remotely to Prevent Unauthorized Access Track your Phone s Location and SIM Changes in the Phone Backup and Restore the Data on Your Phone Remotely Wipe Your Phone Data and Memory Card 15
All Part of McAfee Security Connected Security Management Policy Management Security Reporting Mobile Management Vulnerability Management Risk Management Compliance Network Security Next Generation Firewall Network Intrusion Prevention NAC Gateway Network User Behavior Analysis Network Threat Behavior Analysis Network Threat Response Content Security Email Gateway Web Gateway Data Loss Prevention Encryption Endpoint Security Mac, UNIX/Linux AV Anti-Virus & Anti-Spyware Desktop Firewall Email Server AV & Anti-Spam Virtual Desktop Virtual Server Mobile Devices Host Intrusion Prevention Endpoint Encryption Application Whitelisting Device Control Policy Auditing NAC Endpoint SharePoint Protection Website Reputation 16
Security Solutions for Consumerization of IT Consumerization of IT Mobile Devices Laptops and Desktops Virtualized Desktops BYO IT Issued BYO IT Issued Un-Managed Managed McAfee EMM and WaveSecure McAfee MNAC, Suites, Encryption McAfee MOVE VDI Network Access Control: McAfee NAC Appliance / Network Security Platform Web Applications & DLP: McAfee Firewall / Web Appliance / Network DLP Security Infrastructure: McAfee epo, Endpoint, Network, Content, Compliance Portfolio 17