Network Security
48 min
network security endpoint security key capabilities identity lifecycle management anti fishing privilege management onboarding / offboarding rb patch management application control password less mfa mobile threat defense device control ivanti zero sign on (zso) short description provide password less access to any business app or cloud service through a mobile centric, zero trust framework medium description provide password less access to any business app or cloud service – including microsoft office 365 – through a mobile centric, zero trust framework this delivers a consumer like authentication experience to the enterprise with common biometrics what does it do? passwordless mfa for both cloud and on on premises applications mfa application with support for push notifications, one time pin, and qr code scans integration with uem for conditional access ensure that only verified users, devices, apps, and networks can access business resources delivers a consumer like authentication experience eliminates the need to memorize, enter, or reset complex passwords discovery guidance questions zso, password management, authentication zero trust how are you managing passwords and user authentication? how many helpdesk tickets are due to account lockouts? how do you prevent unmanaged devices, apps, and services from connecting? how do you ensure universal, uniform mfa adoption? licensing details type description sku subscription per device eliminate the need for passwords by making mobile devices the primary factor for user authentication mi zsod subscription per user mi zsou ivanti neurons for patch management short description cloud native solution for patch management and risk remediation across windows macos, linux and third party applications with the strength of ivanti’s patch technology in the centralized ivanti neurons platform medium description ivanti neurons for patch management is a cloud native solution that provides actionable intelligence and device risk visibility across windows, macos, linux and third party applications to reduce threat exposure and risk prioritize and remediate vulnerabilities with insights on active risk exposure, patch reliability and device compliance what does it do? proactively patch against active exploits achieve faster slas with patch reliability and trending insight transition from on premises to cloud patch management streamline patch management processes apply risk based prioritization to quickly minimize vulnerabilities and secure devices provide heterogenous support on one platform – windows, macos, linux and third party patching out of the box save time and reduce patch deployment failures with patch reliability insights deploy by risk discovery guidance questions patching, patch management, risk based patch management, reduce threat exposure, vulnerability remediation, ring deployment, active exploits describe your overall patch strategy how do you track your exposure to risk? what does your compliance reporting look like? how do you prioritize patching? what operating systems do you have to patch? how do security and it work together on patching? licensing details type description sku subscription enables all of the cloud native patch management capabilities in patch mgt c subscription ivanti neurons for patch management ela add on in patch mgt ela c subscription ivanti neurons for patch management msp and migration variations in patch mgt msp, in patch mig epm msp, in patch mig isec msp, subscription patch (includes platform capability) apm c hybrid details for customers looking to take advantage of both on prem patch and cloud native ivanti neurons for patch management, they can use a hybrid option this can be renewed if needed or used to migrate the customer fully to the cloud type sku hybrid subscription endpoint manager patch in patch mig epm c hybrid subscription security controls in patch mig isec c hybrid subscription ies migration in patch mig ies c hybrid subscription dsm migration in patch mig dsm c extended security updates content subscriptions type sku ivanti neurons for patch management windows 10 22h2 esu custom patch 1 year subscription in patch mgt cp win10 t1 c 10 500 devices in patch mgt cp win10 t2 c 501 1000 devices in patch mgt cp win10 t3 c 1001 2000 devices in patch mgt cp win10 t4 c 2001+ devices note all esu subscriptions require an extra legal agreement ivanti neurons patch for intune short description ivanti neurons patch for intune delivers cloud native patch management capabilities for windows and third party applications with the strength of ivanti’s patch technology in ivanti neurons medium description ivanti neurons patch for intune publishes pre tested third party application updates from ivanti’s neurons cloud platform directly into intune this allows it (information technology) teams to deploy third party application updates alongside microsoft os (operating systems) and application updates within intune as part of their existing application lifecycle management workflows what does it do? enables intune customers to migrate their patching workloads entirely to the cloud provides actionable threat intelligence that enables it teams to prioritize and remediate vulnerabilities onboard and offboard intune tenants in minutes utilize ivanti’s industry proven third party patch catalog solution for secure and reliable patching automated new catalog intune imports or console notifications according to supersedence preferences easily identify failed publication transfers of new catalog releases provides a detailed history of all app update activity and current import statuses discovery guidance questions microsoft intune, third party patching, risk based patch management describe your overall patch strategy tell me a little about your patch prioritization how do you manage patching of non microsoft applications? what is your process for researching patches before applying? how do you identify non compliant (un patched) systems? licensing details type description sku subscription enables all of the cloud native patch management capabilities in patch mem c hybrid subscription configuration manager co management capabilities to migrate from on prem patch for configuration manager to neurons patch for intune in patch mig mem c ivanti neurons for mobile threat defense short description ivanti neurons for mobile threat defense provides cloud based (and on premise1) defense against known and unknown zero day mobile threats medium description ivanti neurons for mobile threat defense provides comprehensive real time mobile security with time of click inspection to identify and block phishing and malware attacks, while protecting against known and emerging zero day threats what does it do? defends and resolves threats targeting ios and android devices seamlessly enforces security configurations, settings, and data, while deploying necessary apps offers real time visibility through time of click inspection, analytics, and comprehensive reports fully integrated with ivanti uem client, ensuring 100% user adoption for enhanced security for customers needing an on premise solution, the zimerium oem product should be quoted discovery guidance questions mobile security posture, threat protection, remediation, visibility of corporate owned and employee owned devices how do you currently secure your mobile devices against threats like phishing, smishing, and malware? what’s been your experience with mobile security incidents or breaches in the past? what measures do you have in place to address emerging zero day threats on mobile devices? how do you enforce compliance with security policies on both employee owned and corporate owned devices? what do you use to visualize and report on mobile threats in your organization? what are your top objectives for enhancing your mobile threat defense and remediation capabilities? licensing details type description sku subscription per device ivanti neurons for mobile threat defense (oem lookout) in mtd dvc c subscription per user in mtd user c subscription per device ivanti mobile threat defense security with detection and remediation for mobile devices (oem zimperium) mi mtd d 1ys subscription per user mi mtd u 1ys subscription per device ivanti mobile threat defense – plus (oem zimperium) mi mtdplus d 1ys subscription per user mi mtdplus u 1ys subscription per device ivanti 7 5i ivanti mobile threat defense on premise (oem zimperium) mi mtdop d 1ys subscription server license annual fee mtd on premise vpc instance server license only (oem zimperium) mi mtd onprem 1y ivanti neurons for app control short description cloud native app control tool, offering allow and deny lists, underpinned by ivantis trusted owner technology also granular privilege elevation capabilities all using mature technology on the end point medium description ivanti neurons for app control offers customers zero day threat mitigation and protection from other malware using our trusted owner technology this effectively blocks any program from running if it has not been installed by a trusted administrator account exceptions to this can be made for specific solutions that need to be run but were installed in the user context or to block apps from users who don't need to use them additionally, app control offers granular privilege elevation controls, enabling administrators to define what purpose a regular user account can gain elevated privileges all this is underpinned by charts that highlight what actions should be taken and reports showing how the solution is protecting the environment what does it do? blocks apps from running, preventing malware attacks reduces huge allow/deny list admin overhead, allowing admins to focus on the apps that matter granular privilege elevation ensures users have administrator rights for just the things that they need, reducing attack surface and preventing mis use discovery guidance questions application control, privilege management, allow/deny lists (white/blacklists), application blocking how do you currently manage cases? how are you currently managing osha and epa compliance? what’s the return to work look like for your organization? how are you currently managing workspaces, social distancing protocols, health checks, etc? licensing details type sku subscription in appcon c subscription app control for neurons, must have platform entitlement ivanti security controls short description ivanti security controls simplifies patching, privilege management, and whitelisting medium description ivanti security controls is a single automated patching solution for physical and virtual windows servers and workstations it provides the highest barriers to modern cyber attacks through discovery, os and application patch management, privilege management, and whitelisting what does it do? patch windows (agent, agentless) and linux workstations/servers for os and third party applications patch virtual servers, even the offline virtual images, with deep integration with esxi application whitelisting and privilege management discovery guidance questions discover vulnerabilities, patching, whitelisting, privilege management, local administrators, least privilege how do you detect and remediate vulnerabilities today? how long does it take to patch your os and applications today? how do you patch your offline virtual machine images today? do you have a single pane of glass to detect and remediate both linux and windows machines? licensing details patch subscription product name sku remarks ivanti security controls patch for workstation subscription (per workstation) isec p ws s1 minimum purchase quantity of 10 includes technical support u s federal ivanti security controls patch for workstation subscription isec p ws f s1 minimum purchase quantity of 10 includes technical support ivanti security controls patch for servers subscription isec p sv s1 minimum purchase quantity of 10 includes technical support u s federal ivanti security controls patch for server subscription isec p sv f s1 minimum purchase quantity of 10 includes technical support ivanti security controls console subscription isec csl s1 additional consoles for security module management only includes technical support u s federal ivanti security controls console subscription isec csl f s1 additional consoles for security module management only includes technical support u s federal ivanti security controls patch for server subscription isec p sv f s1 minimum purchase quantity of 10 includes technical support extended security updates content subscriptions type sku subscription patch content isec p cpcs s1 patch content windows server2012\12r isec p cp 2012 s type ivanti security controls windows 10 22h2 esu custom patch 1 year subscription isec p cp win10 t1 s 10 500 devices isec p cp win10 t2 s 501 1000 devices isec p cp win10 t3 s 1001 2000 devices isec p cp win10 t4 s 2001+ devices note all esu subscriptions require an extra legal agreement hybrid details ivanti security controls customers that need mac patch management can leverage the cloud native capabilities of neurons for patch management with a hybrid configuration this can be renewed if needed or used to migrate the customer fully to cloud type sku hybrid subscription security controls in patch mig isec c ivanti patch for endpoint manager short description evaluate, test, and apply os and application patches automatically across an organization medium description patch for endpoint manager can swiftly detect vulnerabilities in windows, mac os, linux, and hundreds of third party apps (acrobat flash/reader, java, web browsers, and more) and deploy patches everywhere you need them what does it do? establish and automate consistent policies for patching all of your assets detect and remediate os and third party app vulnerabilities on various systems create custom patch definitions to deploy patches at the right time, under the right conditions, to minimize the impact on users discovery guidance questions patch management, os and application patching, vulnerability remediation, automated patching how do you deploy and track progress on patches today? how much time do you spend on testing and researching new patches? does patching today interrupt user productivity? are you confident in your ability to detect all the required patches? licensing details endpoint manager patch can be sold as a standalone solution, or as an add on for endpoint manager standalone means that a customer will only use the patching component of endpoint manager this can be sold as a subscription standalone details type sku subscription epm patch for servers ldpm sv s subscription epm patch for workstations ldpm ws s when an existing customer is already running endpoint manager, patch for endpoint manager requires an add on subscription to license the patch content this add on is licensed per device extended security updates content subscriptions type sku add on patch subscription for epm ldpm s server 2012\2012 r2 esu support uem cp 2012 eol s ivanti endpoint manager windows 10 22h2 esu custom patch 1 year subscription uem cp win10 eol t1 s 10 500 devices uem cp win10 eol t2 s 501 1000 devices uem cp win10 eol t3 s 1001 2000 devices uem cp win10 eol t4 s 2001+ devices note all esu subscriptions require an extra legal agreement ivanti patch for configuration manager short description ivanti patch for configuration manager is a plug in to configuration manager that automates the process of discovering and deploying third party application patches medium description ivanti patch for configuration manager deploys third party and microsoft application and security updates as well as operating system updates without any additional infrastructure or complexities using the same workflows in configuration manager, patch for configuration manager installs as a native plugin to automate third party patching programs and receive advanced third party software functionality that microsoft does not provide what does it do? import, manage, sync, and deploy all critical patch information for msft and third party applications using the microsoft configuration manager console reduce risk with comprehensive app patching and pre download testing data assess environments and understand patch compliance using configuration manager’s built in reporting features and improve visibility with role based dashboards discovery guidance questions microsoft configuration manager, third party patch management, vulnerability remediation, patch testing, compliance reporting do you use microsoft configuration manager for patching today? how do you update third party applications? do you have challenges updating applications such as google chrome or java? licensing details type details sku subscription ivanti patch for microsoft system center minimum purchase quantity of 100 includes technical support s psccm s subscription us federal ivanti patch for microsoft system center minimum purchase quantity of 100 includes technical support s psccm s f hybrid subscription neurons patch for intune in patch mig mem c ivanti endpoint security for epm short description gain a single, multi layered solution to detect and prevent threats and respond swiftly to vulnerabilities and incidents medium description gain the multi layered security you need without products from multiple vendors that are expensive and hard to manage endpoint security includes all features of patch management and includes security and av content device control / isolation ivanti application control what does it do? detect and remediate operating system and third party application vulnerabilities stop unauthorized install and execution of unknown apps enforce usage policies for peripheral devices and ports, while providing data encryption for removable media discovery guidance questions patching, application control, local administrators, zero day attack, threat remediation how do you identify and remediate critical threats to your environment, both internal and external? are your patch management, antivirus, and other security measures well integrated? how do you protect against fileless attacks licensing details endpoint security for endpoint manager can be sold as a standalone solution or as an add on for endpoint manager standalone means that a customer will only use endpoint security and patching components of endpoint manager this can be sold as a subscription standalone details type sku subscription epm security for workstations epm security ws s subscription epm security for servers epm security sv s add on details when an existing customer is already running endpoint manager, endpoint security for endpoint manager requires an add on subscription license for the endpoint security content this add on is licensed per device type sku per endpoint epm security s
