We have said this many times: an endpoint is an endpoint is an endpoint. Today, users perform more than 80% of their daily work on mobile devices. These devices contain or have access to the same information and applications traditional endpoints (laptop, desktop) do. Unfortunately, they also expose organizations to new threats that must be stopped. With 60% of endpoints now being mobile, organizations need a unified ability to secure all endpoints.
There are two major capabilities that must be employed in order to control and protect endpoints: management and security. VMware is a leader in the movement to consolidate the management of all endpoints, from traditional to mobile, into Unified Endpoint Management (UEM). And now, in partnership with Zimperium, VMware is helping drive the convergence of Unified Endpoint Security (UES).
Unified Endpoint Security
Aspirationally, an effective UES solution will have two foundational capabilities:
- The ability to detect and respond to risks and threats on all endpoints; and
- Visibility, correlation and threat hunting across all endpoints and networks.
However, despite some early attempts to achieve the first, no one company has a complete endpoint protection solution covering both traditional and mobile endpoints. According to Gartner, the world’s leading research and advisory company, there are currently two distinct offerings:
- Endpoint Protection Platforms (EPP; including Endpoint Detection & Response) for traditional endpoints; and
- Mobile Threat Defense (MTD) for mobile endpoints (and next generation operating systems that are based on closed kernels and containerized apps).
So, let’s rewrite the foundational capabilities based upon today’s reality.
- The ability to detect and respond to risks and threats on all endpoints
- EPP (including Endpoint Detection & Response) for traditional endpoints; and
- MTD for mobile endpoints (and next generation operating systems that are based on closed kernels and containerized apps).
- Visibility, correlation and threat hunting across all endpoints and networks.
UES with VMware & Zimperium
The combination of VMware and Zimperium offerings creates one of the most complete and compelling UES solutions available today. Let’s look at how the partners address each foundational capability.
1A: EPP/EDR (VMware/Carbon Black)
As one of leading providers of EPP/EDR solutions, VMware Carbon Black is an excellent choice to meet the foundational requirements of 1A. VMware Carbon Black Cloud™ is a next-generation endpoint protection platform fighting attacks on traditional endpoints by making it easier to analyze system events to understand what is normal in an environment, prevent attackers from abusing legitimate tools and automate investigation workflows.
Delivered through the VMware Carbon Black Cloud, VMware Carbon Black Enterprise EDR is an advanced threat hunting and incident response solution providing immediate access to a picture of an attack at all times, reducing lengthy investigations from days to minutes.
VMware Carbon Black Enterprise EDR empowers teams to proactively hunt for threats, uncover suspicious behavior, disrupt active attacks and address gaps in defenses before attackers can. Along with continuous visibility, Enterprise EDR enables security teams to respond and remediate threats in real time, stopping active attacks and repairing damage quickly.
#1A with VMware/Zimperium: Check.
1B: MTD (Zimperium)
As the leading provider of enterprise MTD solutions, Zimperium clearly meets the foundational requirements of 1B. Zimperium zIPS leverages Zimperium’s award-winning machine learning-based engine, z9, to detect more device compromises, network attacks, phishing attempts and malicious apps than any other MTD provider.
In addition to proven detection advantages, enterprises and government agencies around the world continue to select zIPS in record numbers because of its clear and significant operational benefits, including:
- Ability to detect both known and unknown attacks on-device;
- Most deployment options, including shared SaaS, dedicated SaaS and on-premises;
- Only MTD solution available on any cloud;
- Only solution that enables multiple UEMs in a single console; and
- Unmatched, comprehensive mobile threat forensics.
#1B with VMware/Zimperium: Check.
2: Unified Visibility (VMware)
The second foundational capability is the lynchpin to the “U” in Unified Endpoint Security. Without an ability to view, correlate and threat hunt across all endpoints, security teams will not have a unified view or ability to act.
With its innovative solution to view and respond to threats across networks and endpoints, VMware easily meets the foundational requirements of number two. VMware Workspace ONE® Intelligence is a service for Workspace ONE environments empowering organizations with rich visualization tools and automation to help them make data-driven decisions from a unique source of truth.
By aggregating, analyzing, and correlating device, application, and user data, Workspace ONE Intelligence provides infinite ways to filter and surface KPIs at speed and scale across the entire digital workspace environment. Once information of interest has been surfaced by Workspace ONE Intelligence, IT administrators can use the built-in automation engine to create rules that take actions based on an extensive set of parameters and create policies that take automated remediation actions based on context and risk analytics.
With Workspace ONE Intelligence, organizations can easily manage complexity and enable Zero Trust security without compromising on employee experience.
#2 with VMware/Zimperium: Check.
Conclusion
The crucial capability that enables VMware and Zimperium to provide best-in-class UES today is the integration of all threat data from VMware Carbon Black and Zimperium directly into Workspace ONE Intelligence. With these integrations, VMware and Zimperium deliver all of the the foundational UES capabilities:
- The ability to detect and respond to risks and threats on all endpoints
- EPP/EDR for traditional endpoints: VMware/Carbon Black;
- Mobile Threat Defense for mobile endpoints: Zimperium; and
- Unified Visibility: VMware.
Learn More
To learn more about UES from VMware and Zimperium, or receive a demonstration, contact Zimperium today.
