VMware Beefs Up Security, Workspace ONE, Acquires Arkin
The virtualization giant made a flurry of announcements Monday morning.
June 13, 2016
New Cloud Access Security Broker Partners
PRESS RELEASE — PALO ALTO, CA–(Marketwired – June 13, 2016) – VMware, Inc. (NYSE: VMW), a global leader in cloud infrastructure and business mobility, today announced five leading cloud access security broker (CASB) leaders have joined the Mobile Security Alliance. The addition of Blue Coat Systems, Inc., CloudLock, Netskope, Palo Alto Networks and Skyhigh Networks adds to the growing support from security industry leaders for the VMware AirWatch® Enterprise Mobility Management™ (EMM) platform to collaboratively solve the challenge of mobile and cloud security.
Integrating VMware Workspace™ ONE™ with products from CASB partners can deliver validated solutions that provide security, visibility and control of applications and devices, and secure digital workspaces from the cloud
“VMware AirWatch is an Enterprise Mobility Management leader with a proven platform for the mobile-cloud era,” said Noah Wasmer, senior vice president, product management, mobile products, End-User Computing, VMware. “We are extending the mobility management and identity management technologies in VMware Workspace ONE to the industry’s leading cloud security providers to give customers a holistic view of their mobile-cloud health and security. Optimized integration between VMware Workspace ONE and CASB partner solutions enable quick action and remediation against threats from a single platform, simplifying mobile-cloud security and management.”{ad}
As organizations embrace mobile and cloud technologies, security across cloud applications is a key factor in corporate security compliance. Integrations between CASB solutions, VMware AirWatch and VMware Workspace ONE help unify enterprise mobility, identity management and cloud security to provide customers a secure and compliant environment. The integrated solutions offer organizations the ability to detect security vulnerabilities in cloud applications and enforce specific actions on mobile devices seamlessly and instantly, reducing the risk and vulnerabilities of mobile devices accessing cloud applications. These joint solutions support common mobile-cloud use cases including secure cloud collaboration, access to sensitive information in customer reference management (CRM) products and, the reduction and control of “shadow IT.”
The Mobile Security Alliance launched in 2015 and is supported by 17 partners, including Check Point Software Technologies, FireEye, Intel Security and Palo Alto Networks. Members work in conjunction with VMware engineering to develop validated, joint solutions and aligned roadmaps, providing customers seamless security management from a single pane of glass. The Mobile Security Alliance focuses on four key security areas: device, application, network and cloud.
Availability
Validated and integrated solutions from VMware, Blue Coat Systems, Inc., CloudLock, Netskope, Palo Alto Networks and Skyhigh Networks are available today.
Supporting Quotes:
“The rate of smartphone and tablet adoption by the workforce has caught many enterprises off guard and ill prepared to maximize the full benefit of these devices while ensuring its secure use. The most logical approach is to …
{vpipagebreak}
… deploy best-of-breed enterprise mobility management and content security solutions together at the enterprise to smartphones and tablets. Blue Coat and VMware have teamed up to offer a completely interoperable and comprehensive security solution to address the need and to safeguard enterprise customer data.” – Peter Doggart, vice president of Business Development, Blue Coat Systems, Inc.
“We’re very excited to announce the expansion of our initial collaboration with VMware on EMM and identity, enabling joint customers to benefit from end-to-end security visibility across their cloud and mobile infrastructure. Through the combination of these best-of-breed technologies — VMware AirWatch, VMware Identity Manager™ and CloudLock’s CASB and cybersecurity platform — we can deliver unified remediation of risks with zero impact on users, without requiring agents.” – Manolo Gonzalez, vice president of Platform and Technology Alliances, CloudLock
“We look forward to providing our joint customers enhanced capabilities and deeper integration as part of the Mobile Security Alliance. Employees and enterprises alike have embraced the combination of mobile and cloud to ensure productivity and efficiency, and integrating the Netskope Active Platform with VMware AirWatch and VMware Identity Manager provides IT with exceptional real-time visibility and actionable control for both sanctioned and unsanctioned cloud app traffic on mobile devices.” – Rick Holden, vice president of Business Development and Alliances, Netskope
“Cloud applications built for mobile devices have become indispensable productivity tools for many organizations. With this growing trend, many IT teams are struggling to extend policy enforcement across devices, users and cloud applications. The extension of our partnership with VMware to include Aperture will provide a unique approach to securing SaaS applications accessed through mobile devices to prevent data risk, malware insertion and compliance violations.” – Chad Kinzelberg, senior vice president of Corporate and Business Development, Palo Alto Networks
“In today’s mobile-cloud era, organizations are seeking integrated solutions that provide seamless visibility and policy enforcement across users (identity), device and data. Skyhigh’s proven scale across more than 30 million users, comprehensive deployment options (proxy and API), industry leading DLP and user behavior analytics, and agentless approach allows organizations to embrace mobile and cloud solutions while seamlessly enforcing their security, compliance and governance policies. We are thrilled to partner with VMware to bring the largest deployment of EMM with the largest deployment of CASB to deliver best-in-class mobile-cloud security for the industry.” – Kamal Shah, senior vice president of products and marketing, Skyhigh Networks
Workspace ONE Enhancements
PRESS RELEASE — PALO ALTO, CA–(Marketwired – June 13, 2016) – VMware, Inc. (NYSE: VMW), a global leader in cloud infrastructure and business mobility, today announced advancements to VMware Workspace™ ONE, powered by the latest update of VMware AirWatch® 8.4 and VMware Identity Manager, that will deliver a new identity-defined managed workspace.
Furthering the principle of consumer simple and enterprise secure, new VMware Workspace ONE adaptive management technology is designed to …
{vpipagebreak}
… remove limitations of stand-alone mobile application management (MAM) and identity-as-a-service (IDaaS) to protect data inside applications without requiring device management to accelerate support for BYOD initiatives.
“VMware was the first in the industry to bring together identity, device management and application delivery on a single integrated platform to support business mobility initiatives for companies transitioning their legacy infrastructure to compete in the mobile-cloud era,” said Dave Grant, vice president, product marketing, desktop products, End-User Computing, VMware. “Adopting new SaaS and mobile applications is critical for business transformation but can introduce significant risk. The new capabilities in VMware Workspace ONE can help improve company-wide security and take control of managed or unmanaged devices.”
VMware Workspace ONE — Closing the Gap Between Identity, MAM and EMM
According to a recent research report by industry analyst firm, International Data Corporation, “While the vast majority of organizations IDC interacts with are acutely aware of the paradigm shift from corporate-owned to personally owned devices, many still struggle with the people, process, and technology decisions required for a successful BYOD program.”1
New capabilities in VMware Workspace ONE are designed to cover the full spectrum of employee and device enablement options — from completely unmanaged, browser-based on-boarding of end-users using personal devices to enablement of fully managed corporate devices.
The new VMware Verify application, a built-in two-factor authentication (2FA) solution, uses personally owned smartphones and tablets as powerful authentication tokens. When logging into corporate applications from any device, users simply tap the “verify” notification on their device for immediate authentication.
For unmanaged devices, VMware Workspace ONE harnesses native-OS level data protection without the need for traditional MDM profiles. By downloading VMware Workspace ONE and entering a corporate email address, end-users automatically receive single sign-on access to any corporate web, native, mobile or Windows application. To access more sensitive applications, end-users simply activate “Workspace Services” to unlock native OS data protection. Activating Workspace Services is designed to inherently protect a user’s privacy and does not allow IT to track or report BYO-sensitive information like GPS, device restrictions and personal applications.
For corporate-owned devices, companies can build on the managed workspace with VMware Workspace ONE Unified Endpoint Management, leveraging the power of VMware AirWatch EMM technology for complete out-of-the box configuration, advanced conditional access policies, device auditing, automated remediation, and lifecycle management.
Transforming Modern Management Across Today’s Mobile Platforms
New capabilities from Microsoft Windows 10 provide organizations the opportunity to shift away from datacenter-centric, domain-based image management to an ….
{vpipagebreak}
… EMM model that is simpler, more secure and cost-effective. New in Workspace ONE, the unified catalog will support the Microsoft Windows Store for Business, the unified location where IT decision makers and administrators can find, acquire and manage licenses, and distribute Windows 10 applications across their organizations.
VMware Workspace ONE will reduce complexity in application delivery and lifecycle management by integrating its application catalog and application delivery technologies with the Microsoft Windows Store for Business. This will deliver several benefits to IT administrators, including the ability to purchase public applications in bulk; caching of licenses for offline distribution, reclamation and reuse; the ability to push approved Windows applications while restricting access to public application stores; and support for the upload and delivery of internally developed applications.VMware Workspace ONE will also support the unified technologies for Apple education introduced in iOS 9.3, including Apple School Manager, managed Apple IDs and the Classroom App. The updates are designed to help streamline workflows, assist administrators and users in locating lost devices, allow users to share devices without losing personalization and enable application notification controls. For streamlined deployment, VMware AirWatch 8.4 will deliver a tailored education section in the console that allows school systems to manage students, teachers, classes and device carts in the unique way required by education systems.
Availability and Pricing
VMware Workspace ONE is expected to be generally available this quarter. The solution will be offered in standard, advanced and enterprise editions with prices starting at $8 per user per month for cloud subscriptions and $150 per user for on-premises perpetual licenses. VMware AirWatch 8.4 is expected to be generally available this quarter. VMware AirWatch management bundles are offered in multiple editions with both cloud subscriptions and on-premises perpetual licensing.
1 International Data Corporation, “IDC Planscape: Holistic BYOD Considerations,” by Bryan Bassett, Denise Lund, Stacy K. Crook, December 2015, Doc #US40630415
Arkin Acquisition
PRESS RELEASE — PALO ALTO, CA–(Marketwired – June 13, 2016) – VMware, Inc. (NYSE: VMW), the global leader in virtualization and cloud infrastructure, today announced the intention to acquire Arkin Net, a leader in software-defined data center security and operations. Financial details of the transaction were not disclosed. The transaction is expected to close in Q2 2016.
Organizations globally are adopting a software-defined data center (SDDC) architecture based on VMware virtualized infrastructure and management to deliver …
{vpipagebreak}
… automation, security and continuity for applications. SDDC breaks down the barriers between traditionally disparate domains of compute, networking and storage. This evolution requires an operational model that delivers cross-silo visibility and collaboration. With the acquisition of Arkin, and through the integration of VMware vRealize® Suite, cloud management teams will have access to a new generation of planning, troubleshooting and automation platform that provide visibility and control across the entire data center environment.
VMware NSX™ network virtualization is being widely adopted in large scale production deployments as part of the SDDC where cross-silo visibility and collaboration is critical. Identified by Gartner in “Cool Vendors in Enterprise Networking, 2016(1),” Arkin is purpose-built for NSX environments. The Arkin platform provides insights into the datacenter traffic flows via a pre-assessment tool that enables faster NSX deployments via micro-segmentation planning. Post deployment, Arkin significantly lowers time to resolution, leveraging constructs such as time-machine, plain English search and contextual analytics across virtual and physical layers.
Today, VMware vRealize Operations provides extensive management across both physical and virtual compute and storage environments. With the acquisition of Arkin, VMware vRealize Suite will have the ability to extend across the entire SDDC, including the VMware NSX network virtualization layer.
“Arkin is a great fit for VMware and its customers as we look to accelerate our growth businesses including cloud management and network virtualization,” said Ajay Singh, senior vice president and general manager, cloud management business unit, VMware. “With VMware NSX combined with Arkin and vRealize, VMware will deliver the security and operations management plane for the SDDC. Over time, Arkin will solidify vRealize Suite’s position as the industry’s most comprehensive Cloud Management Platform that delivers application-focused operations, NSX micro-segmentation at scale and cross-domain visibility and context across physical and logical infrastructure.”
“Arkin and VMware have been great partners and we’re now excited to join the VMware family to take Arkin to the next level,” said Shiv Agarwal, co-founder and chief executive officer, Arkin. “Arkin delivers a new operations paradigm that has been built from the ground up for VMware NSX network virtualization and is fully aligned with the core NSX use cases of IT automation, security and application continuity.”
VMware and Arkin are already collaborating to meet the needs of mutual customers such as Columbia Sportswear, California Department of Water Resources (CDWR) and Nebraska Medicine.
“Operational visibility, which accounts for both hardware and software, is critical to how organizations succeed in using next-generation data center technologies,” said John Spiegel, IS/Global Communications Manager at Columbia Sportswear. “The combination of VMware NSX and Arkin provides us a ,,,
{vpipagebreak}
… tactical and strategic lens for managing our virtualized data center.”
“Arkin and VMware are strategic partners helping Nebraska Medicine deploy our next-generation NSX based software-defined data center,” said Brian Lancaster, Executive Director of Information Management at Nebraska Medicine. “Arkin real-time flow analytics makes it extremely easy to implement micro-segmentation security. The visibility and troubleshooting capabilities that Arkin provides to our networking and operations teams enables us to more quickly and confidently scale our NSX deployment.”
About Arkin Net
Arkin is enabling software-defined security and networking for next generation data centers and cloud. Several F500/G2000 organizations have deployed the Arkin platform to get deep operational visibility across virtual and physical, implement micro- segmentation based security, and ensure high application availability. Visit www.arkin.net or follow us @arkinnet.
Endpoint Security Powered by Tanium
PRESS RELEASE — EMERYVILLE, CA and PALO ALTO, CA–(Marketwired – June 13, 2016) – VMware, Inc. (NYSE: VMW), a global leader in cloud infrastructure and business mobility, and Tanium, the company that redefined endpoint security and systems management, today announced a new endpoint security solution, VMware TrustPoint™. VMware TrustPoint combines the speed and scale of Tanium’s endpoint security platform with VMware’s layered OS migration technology, to deliver an integrated solution for unified endpoint management and security. VMware TrustPoint will enable rapid visibility and control of every endpoint across global networks, next-generation threat detection and remediation, endpoint and application management, and automated Windows image migration and management.
“Tanium has invented a highly innovative approach to endpoint management and security that offers speed and scalability that is suited for mobile and cloud computing,” said Sanjay Poonen, executive vice president and general manager, End-User Computing and head of Global Marketing, VMware. “By integrating it with VMware’s innovative layered OS migration technology, we can help companies modernize their corporate endpoints as they embark on their business mobility journey. We look forward to the continued collaboration that will bring the best combination of Tanium and VMware products to mutual customers and partners.”
“Most security solutions on the market now were created before the invention of mobility, cloud computing, and virtualization,” said Orion Hindawi, co-founder and chief executive officer, Tanium. “VMware TrustPoint powered by Tanium is the only approach to endpoint security that provides …
{vpipagebreak}
… visibility in 15 seconds and control at the speed and scale of today’s dynamic environments. No one else comes close.”
VMware TrustPoint – Endpoint Security and Management Redefined
VMware TrustPoint powered by Tanium, uses patented linear-chaining architecture technology to enable IT operation and security teams to gain rapid visibility into all information and behaviors on endpoints across global networks. In addition, business and IT teams can use natural language search to retrieve accurate and complete data about their computing environments.
To maximize security hygiene, VMware TrustPoint’s Image Service technology can accelerate the adoption of Windows 10 for improved endpoint security. The solution can mitigate the complex process of upgrading and managing devices and applications through automated Windows migration where a single technician can concurrently handle 100 or more migrations from a central management console.
The solution also helps detect hidden, unmanaged assets across large distributed global networks quickly with minimal impact on the WAN. Once unmanaged assets are detected and identified, administrators can block them from the environment to maintain a secure network and bring the assets under control so every connected device is accounted for and in compliance with corporate security policies.
According to industry analyst firm, Gartner, “Security organizations must assume they are compromised, and, therefore, invest in detective capabilities that provide continuous monitoring for patterns and behaviors indicative of malicious intent.”(1)
The world of endpoint security and endpoint management is converging. Combining endpoint security and automated Windows image migration into a single solution, VMware TrustPoint can help IT administrators provide improved security with better endpoint hygiene, real time threat detection, and incident response and remediation. With Windows 10 accelerating the replacement of legacy client management tools, VMware will offer a complete portfolio of unified endpoint management solutions with VMware TrustPoint for endpoint security and VMware AirWatch® for endpoint management.
VMware has been leveraging Tanium internally to provide real-time insight and remediation capabilities throughout the organization.Availability and PricingVMware TrustPoint is expected to be available this quarter in the U.S. and in additional regions later this year. The solution is priced at $75 per device for a perpetual license. For more information, please contact VMware sales.
(1) Gartner, “Malware Is Already Inside Your Organization; Deal With It” by Peter Firstbrook and Neil MacDonald, February 12, 2014, Gartner Foundational March 17, 2015
Additional Resources
Watch a discussion between Sanjay Poonen, executive vice president and general manager, End-User Computing and head of global marketing and communications, VMware and Orion Hindawi, co-founder and CEO, Tanium
Watch a discussion between Shankar Iyer, vice president, product management, desktop products, End-User Computing, VMware and Kevin Chu, vice president, technology, Tanium
Read a guest blog post by Curt Aubley, vice president of global strategic alliances and technology, Tanium
Read a blog post by Nicolas Rochard, director of product marketing, desktop products, End-User Computing, VMware
For information on the updates to VMware Workspace™ ONE™, also announced today, read the press release here.
For information about the new cloud access security broker (CASB) partners that joined the Mobile Security Alliance also announced today, read the press release here.
Follow VMware on Twitter and Facebook.
About VMware
VMware is the leader in virtualization and cloud infrastructure solutions that enable businesses to thrive in the Cloud Era. Customers rely on VMware to help them transform the way they build, deliver and consume Information Technology resources in a manner that is evolutionary and based on their specific needs. With 2015 revenues of $6.6 billion, VMware has more than 500,000 customers and 75,000 partners. The company is headquartered in Silicon Valley with offices throughout the world and can be found online at www.vmware.com.
ABOUT Tanium
Tanium gives the world’s largest enterprises and government organizations the unique power to secure, control and manage millions of endpoints across the enterprise within seconds. Serving as the “central nervous system” for enterprises, Tanium empowers security and IT operations teams to ask questions about the state of every endpoint across the enterprise in plain English, retrieve data on their current and historical state and execute change as necessary, all within seconds. With the unprecedented speed, scale and simplicity of Tanium, organizations now have complete and accurate information on the state of endpoints at all times to more effectively protect against modern day threats and realize new levels of cost efficiency in IT operations. Visit us at www.tanium.com or follow us on Twitter at @Tanium.
Read more about:
AgentsAbout the Author
You May Also Like