Transcript Airwatch

Mobile Security
Mobile Device Management
Mobile Application Management
Corporate Overview
▶
Largest MDM provider with over 500 employees, 200 focused on R&D
▶
Provide MDM solutions to more than 2,000 global customers
▶
Leaders in mobile security, device, application and content
management across multiple platforms
▶
Leadership built Manhattan Associates (NASDAQ: MANH) to 2,000+
employees, $300+ Million in revenue, $1 Billion market cap with no
outside capital
▶
Backed by private equity fund with $200+ Million in assets
▶
Our mission: Simplify Enterprise MobilityTM
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
2
Industry Recognition
▶
Gartner – Positioned as a Leader in 2011
Magic Quadrant for Mobile Device
Management Software
“The management console features a strong dashboard
and detailed reporting capabilities.”
“Multitenant support is designed in for improved
scaling, with selective isolation for large installations.”
▶
Info-Tech – Identified as a Champion in
2011 Mobile Device Management Vendor
Landscape
“AirWatch gives you the best bang for your buck.”
“A great value and an easy recommendation for most
businesses.”
“Has many advanced features that other vendors do not.”
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
3
Industry Recognition
▶
Forrester – Named Innovator in Market Overview: Cloud-Hosted
Mobile Device Management Solutions And Managed Services and OnPremises Mobile Device Management Solutions, Q1 2012
“AirWatch supports flexible architectures in that in can be delivered through
an on-premises solution, an appliance, or a SaaS solution.”
“AirWatch’s user-friendly, actionable management dashboard and
competitive pricing have made it a top MDM contender for many firms.”
“AirWatch boasts both strong on-premises and hosted MDM and WLAN
management solutions.”
▶
Forrester – Market Overview: Mobile Security, Q4, 2011
“AirWatch is an innovative MDM and security vendor.”
“AirWatch is one of the most versatile products that we reviewed.”
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
4
Representative Customers
Consumer
Goods/Retail
Education
Government
Transportation
Healthcare
Services
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
5
Significant Deployments
Customer
Device
Types
# of
Devices
iOS, Windows
Mobile
25,000 going
to 110,000+
Overview
▶
▶
▶
▶
iOS
11,000+
▶
▶
▶
▶
iOS, Android,
WM, Symbian
15,000+
▶
▶
▶
▶
Windows Mobile
50,000+
▶
▶
▶
▶
iOS, Android
11,000+
▶
▶
Deployment growing significantly in 2011 across all device types
Supporting delivery trucks, corporate and employee-liable devices
Global rollout, multi-lingual
Devices deployed for Army logistics in Afghanistan, Iraq and Middle East
Multi-tenancy, high availability, scalability and rich functionality all critical
Leveraging the app catalog to manage expense reporting apps
Utilizing SDK for time entry app
Initial iOS deployment in Q1 2011
Estimated to grow significantly across all platforms and business units
Tight integration to internal infrastructure via AirWatch API
Phase 2 includes app and certificate management
Motorola devices deployed for store and logistics operations
DataMart delivery in Q1 for integration to MicroStrategy
Processing over 100,000 mobile point of sales transaction weekly
Check in/check out asset tracking of shared devices
Signed contract in January 2011 after extensive pilot program and delivery of
cross-platform enterprise app store
Rapid deployment
Advanced certificate management for VPN networks
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
6
AirWatch Advantages
▶
Strong track record with deployments exceeding 50,000 devices, growing to 100,000+
▶
Highly scalable architecture that can be deployed on-premise, as an appliance or SaaS and
meets strict requirements for high availability and redundancy
▶
Software built on industry standard .NET, MS SQL and HTML 5 development platforms
▶
Feature-rich solution that incorporates an enterprise app catalog, robust compliance module,
secure content delivery and Secure Email Gateway for managing access to email infrastructure
▶
Integration to enterprise infrastructure such as LDAP / AD, certificate authorities, VPN,
Exchange, Office365, Gmail, help desk systems, etc.
▶
Advanced reporting, alerting and workflow with a complete DataMart for easy export of data
out to third party business intelligence solutions
▶
SDK framework that incorporates additional device management capabilities into internal
applications for advanced security, authentication and data loss protection
▶
Easy transition from 30-day trials and proof of concepts (POCs) to production environments
▶
Competitive pricing with flexible commercial terms for $4/month SaaS model and $50
perpetual licenses
▶
Professional services and implementation packages available to fit enterprise deployment needs
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
7
AirWatch Differentiators
Architecture







Multi OS support
Multi-tenant
Highly scalable
Role-based access
API Integration
HTML 5 UI
Custom branding
Enterprise Integration






Mobile Security







Secure email gateway
Secure content locker
Secure mobile browser
Compromised device detection
Compliance rules engine
Enterprise or full device wipe
Privacy policies based on ownership
SDK Library





Single sign-on
App passcode, lock and wipe
App data encryption
Compromised device detection
App and data usage monitoring
Flexible Delivery
SCEP, PKI (Certificate Authorities)
Directory services (LDAP/AD, Domino)
Smart-card, token, SAML authentication
Email (Exchange, Traveler, BPOS-D, Office
365 and Gmail)
VPN (IPsec, Juniper SSL, F5 SSL and Cisco
AnyConnect)
Wi-Fi (WEP, WPA, WPA Enterprise - TLS,
TTLS, EAP, PEAP)
Configuration and Profiles





Corporate-liable, employee-liable or shared
devices with unique policies
Automated profile distribution by user roles,
groups and device types
Certificate integration
Shift and user-based reconfiguration
Location-based provisioning
Self-Service







Registration and activation
Device locator
Clear passcode, lock and wipe
Compliance audit
Optional profiles
App requests
Technical support





SaaS - $4/device/month
On-premise - $50/device
Software appliance - $5,000
Professional services
24/7/365 global support
Applications





App inventory and distribution
HTML and native app catalog
White lists and black lists
Compliance engine
Volume Purchase Program
Mobile Intelligence







Alerts via console, Email or SMS
Reports with automated distribution
Automated workflow to respond to
exceptions or threats
Knowledge management system
Integrated case management
DataMart export to BI tools
Mobile telecom management
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
8
Complete Mobility Management
Deploy
Retire
Configure
Support
Monitor &
Manage
Secure
Apps &
Content
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
9
Advanced Scalable Architecture
▶
Broadest platform support—Android, Apple,
BlackBerry, Symbian, Windows Mobile and
Windows Phone 7—scalable and multi-tenant
▶
Web-based, intuitive user interface built on the
latest HTML 5 standards
▶
Interactive dashboards and views, advanced filters
and searches to automate repetitive tasks
▶
Exception management views and automated
workflows for proactive issue resolution
▶
Role-based access control (RBAC engine)
▶
Enterprise infrastructure integration (Microsoft
Exchange, Office 365, Lotus Notes, Gmail for
Business, LDAP, SAML, PKI (Certificate Authority)
▶
Complete DataMart for easy export of data out to
third party business intelligence solutions
▶
SaaS or on-premise (appliance, dedicated
hardware or VM) deployment options
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
10
The Most Secure Mobile Management
▶
Enterprise directory-based authentication
▶
SCEP/Certificate Authority integration
▶
Configurable device password policies
▶
Device data encryption
▶
Compromised device detection
▶
Secure email gateway with device level access
control and policies for securing attachments
▶
Secure mobile web browser
▶
Application lock down
▶
Security audits, events logs and compliance engine
▶
Remote lock, corporate/selective or full wipe
▶
Configurable privacy policies for
employee-liable versus corporate-owned devices
▶
Role-based console access with enterprise
directory integration
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
11
Secure Email Gateway
▶
Protect and manage your enterprise email
infrastructure through a flexible gateway
▶
White/blacklist devices connecting to corporate
email or manually based on exceptions
▶
Validate devices based on:
▶
▶
Mobile user’s username or email address
▶
Device serial number/OS version
▶
Unique device certificate
DMZ
Monitor device interactions with the email server:
▶
Date and time of sync attempt
▶
ActiveSync command
▶
Data traffic
▶
ActiveSync version
▶
Device type and IP address
Public
Internet
AirWatch Secure
Email Gateway
Corporate
Network
AirWatch MDM
Server
Mobile Email
Front-End Server
Corporate Firewall
Corporate Firewall
Back-End Email Servers
▶
View and filter information for exceptions/threats
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
12
Secure Mobile Browser
▶
Monitor and control web browsing through a
customizable mobile app for corporate users
▶
Set allowed and blocked websites, URLs, and
website categories
▶
Set whitelists/blacklists individually by user or
device, and enforce based on location
▶
Push down bookmarks to enterprise
recommended sites or Intranet sites
▶
Bookmarks can be individualized by user
▶
Set the browser to only allow access to a single
website (Kiosk mode)
▶
Track web-browsing history in the console
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
13
Configuration Management and Policy Enforcement
▶
Fast deployments with a secure and streamlined
device activation process
▶
Password, Email, Calendar, Contacts, VPN, Wi-Fi
configuration and app distribution
▶
Shift-based re-configuration by user (e.g. shared
devices for nurses)
▶
Over-the-air software and OS updates with
push/pull delivery
▶
Device grouping and bulk management for large
deployments
▶
Configuration libraries with profiles, templates and
Golden Images
▶
Automated process for assigning and deploying
configuration profiles
▶
Reduce IT time and effort to configure and reconfigure devices
▶
Full lifecycle support with minimal IT involvement
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
14
Secure Content Locker
▶
Secure access to corporate documents from mobile device
▶
Automate distribution based on user role, device ownership
or location
▶
Protect access through multi-factor authentication and
security compliance
▶
Require MDM and compliance with security policies
▶
Encrypt data transfer and storage on the device
▶
Organize content using custom categories and metadata
▶
Define policies that enable users to save files on the device,
open in other apps or share
▶
Manage content available for online/offline viewing
▶
Enable users to search and browse documents via smart
views (All, New, Recent Activity, Favorites)
▶
Track document versions and updates
▶
Disable access and wipe all content if device is
compromised/MDM is broken
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
15
Application Catalog and Distribution
▶
Distribute and perform silent updates to
enterprise apps
▶
Limit selection, recommend and ease the
distribution of publicly available apps (Apple
AppStore or Android Market)
▶
Monitor app lists (installed/not installed/out of
date), app usage and data usage
▶
Manage app white lists/black lists and
compliance policies
▶
Lock down devices (kiosk mode) to an ITapproved set of programs or apps
▶
Set up a workflow to automatically manage
policy violations:
▶
Notify user and/or IT
▶
Disable app/corporate access (Wi-Fi, VPN, Email)
▶
Selective/corporate or full wipe
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
16
SDK/Developer Toolkit
▶
Developer toolkit for iOS enterprise apps
▶
Compromised device detection with the ability to
automatically wipe corporate data
▶
Enterprise app single sign-on with certificate
authentication
▶
Data encryption for data stored within an
enterprise app
▶
Remote wipe of corporate data based on number
of failed passcode attempts or on-demand
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
17
Business Intelligence, Workflow and Reporting
▶
Automated workflow for exception management
▶
Isolate or wipe “at-risk” devices
▶
Self-service portals to locate devices, reset
passcodes and remotely lock or wipe lost devices
▶
Alerts via console, Email or SMS triggered by
specific device or user actions
▶
Reporting portal with over 100 customizable
reports and automatic report distribution
▶
▶
Multiple export formats: PDF, EXL, EML or CSV
Central knowledge management system for
storing documents, manuals etc.
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
18
Full Lifecycle Management
J. Doe
Role: Account Manager
J. Doe
Role: Account Manager
Stolen Device
Corporate Services
VPN
Wi-Fi (New)
Exchange 2010
Corporate Services
None
All Access Denied
5
3
AirWatch removes corporate data,
apps, access to corporate services and
remotely wipes the device
Company upgrades Exchange and
rotates Wi-Fi certificates
1
Securely enroll device using
AirWatch
J. Doe
Role: Business Director
AirWatch automatically upgrades
device configuration
J. Doe
Role: Account Manager
Corporate Services
VPN
Wi-Fi
Exchange 2010
Corporate Apps
Corporate Services
VPN
Wi-Fi
Exchange 2007
4
2
Device stolen!
J. Doe is promoted to Business Director
AirWatch configures device based on new role for
higher access to corporate services
AirWatch configures device to
access corporate services
AirWatch
Corporate Resources
Certificate Services
Directory Services
Mail Services
Wi-Fi
VPN
Applications
Content
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
19
AirWatch Benefits
▶
Manage the entire mobile lifecycle
▶
Support corporate and employee-liable devices
▶
Increase security with enterprise integration
▶
Minimize Data Loss Prevention (DLP)
▶
Prove compliance with industry standards
▶
Increase scale of mobile deployments
▶
Manage complexity across geographies/groups
▶
Automate processes and reduce IT costs
▶
Streamline deployment of enterprise apps
▶
Secure distribution/access to sensitive documents
+1.404.478.7500 | [email protected] | air-watch.com
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential.
20