Cognitive unified endpoint management allows organizations to manage devices, identities, applications and content through a single management platform powered by cognitive computing and artificial intelligence. The document discusses how traditional mobile device management solutions were built for simpler times but now IT leaders have bigger ambitions and require solutions that can deliver on user expectations through convenience while also balancing control. It provides an overview of IBM MaaS360's cognitive unified endpoint management platform, how it uses cognitive technology like Watson to provide insights, and the various editions that are available.

1. Cognitive unified endpoint management
Biju Tilak
MaaS360

2. 2 IBM Security
Traditional mobile device
management solutions were
built for a simpler time.
Today’s IT leaders
have bigger ambitions.

3. 3 IBM Security
Traditional client management Modern API management+
Technology convergence is changing the game

4. 4 IBM Security
Unified Endpoint Management (UEM)
is the first step to enable today’s enterprise ecosystem.
Devices and things People and identity Apps and content

5. 5 IBM Security
1 A commissioned study conducted by Forrester Consulting on behalf of IBM, January 2017..
of companies will use artificial intelligence (AI) or
cognitive computing to analyze endpoint data by 2020.> 80%
Cognitive technology
helps you deliver on
their expectations.
They expect
convenience.
Your employees
are consumers.
+
Balance control, deliver on expectations
=

6. 6 IBM Security
Cognitive technology gives IT and
Security leaders the power to see:
• What happened
• What can happen
• What should be done
All in the context of your environment.

7. 7 IBM Security
Cognitive offers a new approach
• Digging through news & blogs randomly
• Manually searching in platform
DISCOVER
• Being alerted with insights & news
• Asking questions, getting answers
• Spending hours learning DEFINE • Getting knowledge served to you
• Fumbling for relevancy & best practices ASSESS
• Gaining instant understanding &
recommendations
• Developing an action plan ACT • Taking immediate action within context
GO FROM TO

8. 8 IBM Security
IBM MaaS360 with Watson for cognitive UEM
Trusted Advisor
Augmented intelligence and cognitive computing
Actionable insights Contextual analytics
Apps and content People and identity
Apps Content Data Identity Threats Connectivity
Devices and things
Smartphones Tablets Laptops Wearables Internet of Things

9. Identity Management

10. 10 IBM Security
• Seamless user experience with SSO to cloud
apps from desktop or mobile
• Conditional access preventing access from
unmanaged or non-compliant devices
• Instant on without any installation or infrastructure
• Flexible integration supports existing AD and
LDAP directories
• Bundled with MaaS360 additional licenses not
required
Enable access management through MaaS360 UEM New
SSO to Mobile, Web/SaaS apps
Identity Federation
Self-Service App Request
Onboarding, Provisioning
Step-up Authentication, MFA
Conditional Access Management
Threat and Risk Management
IBM Cloud Identity

11. 11 IBM Security
Device Authentication
(Native Mobile SSO)
User launches
Application
SaaS/Web
applications
Native Mobile App SSO from a mobile device to enterprise resources
via integration with IBM Cloud Identity
IBM Cloud Identity
Connect
SAML SSO

12. 12 IBM Security
Managed by MaaS360
Unmanaged APPROVED APPS
Provides SSO with conditional access ensuring only trusted
devices and applications can access enterprise resources
Compliant with IT Policy
Access granted
SSO to apps
Access denied
IBM Cloud Identity
This information represents the current intent of IBM Product Development. Plans may change at any time for any reason at the sole discretion of IBM

13. 13 IBM Security
Addressing user pains with application access
Mobile Apps SaaS Apps
EMPLOYEE LINE OF BUSINESS IT SECURITY
USER PAINS • Multiple usernames and
passwords
• Difficult to find applications
• No idea how to request
access
• Current tools aren’t user
friendly
• Shadow IT costs are
expensive
• Too much time waiting on IT
• Loss of control over data
• Infrastructure costs
• IT skill dependencies
• Loss of security over data
• Roadblock for the business
• Heritage tools aren’t user
friendly

14. 14 IBM Security
Plan for Identity Management with IBM Cloud Identity
Embedded Cloud Identity extends the MaaS360 platform and provides single sign-on with
conditional access to cloud applications
Web SaaS App SSO,
Identity Federation
Mobile Native App SSO,
Conditional Access Management
(iOS only, Q4 Android)
Single touch access
to mobile, web/SaaS apps
boosts productivity
Identity federation using
pre-integrated connectors to
popular SaaS applications
Conditional access ensures
only trusted devices, apps
access enterprise resources
Threat Management powered
by x-force exchange provides
risk data for apps
Stand-alone Identity and Access
Management platform with built-
in integration with MaaS360
Interoperability with 3rd party
Identity Providers allows
customers to leverage their
existing investments
Threat and Risk Management
IBM Cloud Identity
NOTE:
* Identity Management equates to IBM Cloud Identity Essentials
and does not include “Verify” (MFA) or the “ISAM Connector”.
This information represents the current intent of IBM Product Development. Plans may change at any time for any reason at the sole discretion of IBM

15. 15 IBM Security
Leading macOS management services
MaaS360 covers all your macOS management needs
Enterprise Features
• Easy User Enrollment
• Remote Lock, Wipe
• Comprehensive macOS management
• Full API driven Profile management for Email, VPN,
Wi-Fi, Printer, Login window configuration with
certificates integration
• Enroll using DEP
Greater Security
• OS Restrictions for Apps, Updates, Media etc.
• FileVault provisioning, reporting and protection
• Endpoint Security Reporting for Firewall, Antivirus,
Encryption
• Patch & App Updates
macOS Sierra
OS X El Capitan
Apps
• Software Distribution
• App Store
• Remote Control

16. 16 IBM Security
Software Distribution | OS / App Patch Management

17. 17 IBM Security
Best in class to manage Windows 10
With MaaS360 and Windows 10, you can manage your smartphones and laptops
with all the ease that you have come to associate with MaaS360
Provisioning Windows 10 Devices
• Easy device enrollment
• Wi-Fi, VPN Configurations
• Locate action and more
• Out of box enrollment for Windows 10 devices
Greater Security
• More Passcode configurations
• Full Certificates lifecycle Integration
• Apps Compliance
• Enterprise Data Protection for Documents
• Health Attestation
• Compliance Rules
• Advanced Patch & 3rd party App Updates
Apps
• Software Distribution
• App Store
• Remote Control
Window 10
Support

18. 18 IBM Security
Software Distribution | OS / App Patch Management

19. Appendix
COGNITIVE UEM EDITIONS

20. 20 IBM Security
with Watson – cognitive UEM editions
Solution Essentials Deluxe Premier Enterprise
Device Management
iOS, Android, Windows Mobile, Windows & macOS
✔ ✔ ✔ ✔
App Management
iOS, Android, Windows Mobile, Windows & macOS
✔ ✔ ✔ ✔
Patch and Update Management ✔ ✔ ✔ ✔
Identity Management ✔ ✔ ✔ ✔
Advisor ✔ ✔ ✔ ✔
Container App ✔ ✔ ✔ ✔
Mobile Expense Management ✔ ✔ ✔ ✔
Secure Mobile Mail ✔ ✔ ✔
Secure Mobile Chat ✔ ✔ ✔
OS VPN ✔ ✔
Secure Browser ✔ ✔
Gateway for Browser ✔ ✔
Content Management ✔ ✔
Gateway for Documents ✔ ✔
App Security ✔ ✔
Gateway for Apps ✔ ✔
Mobile Document Editor ✔
Mobile Document Sync ✔
Mobile Threat Management ✔
TeamViewer Remote Support O O O O

21. 21 IBM Security
App Management
Deploy custom enterprise app catalogs
Blacklist, whitelist & require apps
Administer app volume purchase programs
Device Management
Manage smartphones, tablets & laptops
featuring iOS, Android, Windows 10
Mobile, Windows 7, Windows 10 &
macOS
Gain complete visibility of devices,
security & network
Enforce compliance with real-time &
automated actions
Essentials Edition – a great first step for cognitive UEM
Patch & Update Management
Identify & report on missing OS patches
Schedule distribution and installation of
Windows OS & macOS patches
Determine outstanding updates to third
party Windows and macOS applications,
like Java & Adobe
Identity Management
Single sign-on & touch access
Conditional access to trusted devices
Identity federation with apps

22. 22 IBM Security
Container App
A separate, corporate mobile workplace
for iOS, Android & Windows
Productivity apps for work in one place
Data leak prevention controls to restrict
copy-paste & forwarding of content
Advisor
Boost user productivity by identifying policy and app deployment
enhancements
Discover security vulnerabilities & emerging threats to endpoints,
apps & data
Improve IT operational efficiency by applying best practices &
learning from industry & peer benchmarks
Essentials Edition – a great first step for cognitive UEM
Mobile Expense Management
Monitor mobile data usage with real-time alerts
Set policies to restrict or limit data & voice
roaming
Review integrated reporting & analytics

23. 23 IBM Security
Deluxe Edition – add email and chat containerization
includes all solutions from Essentials Edition
Secure Mobile Mail
Contain emails, attachments & chat to prevent data leakage
Enforce authentication, copy/paste & forwarding restrictions
FIPS 140-2 compliant, AES-256 bit encryption for data at rest
Secure Mobile Chat
Enhance on-the-go collaboration and productivity
Contain all chat mobile conversations and data
Establish quick connections via corporate directory lookup

24. 24 IBM Security
Premier Edition – add critical productivity and security solutions
includes all solutions from Deluxe Edition
Secure Browser
A feature-rich web browser for secure access to intranet sites
Define URL filters & security policies based on categories
Block known malicious websites
OS VPN
Preserves the native VPN experience for iOS and Android users
Leverages the hosted MaaS360 Certificate Authority to issue authentication certs
Deployed alongside your corporate VPN solution
Gateway for Browser
Enable MaaS360 Secure Mobile Browser to access enterprise intranet sites, web
apps & network resources
Access seamlessly & securely without needing a VPN session on mobile device

25. 25 IBM Security
Gateway for Documents
Secure access to internal files:
e.g., SharePoint & Windows File Share
Retrieve enterprise documents without a VPN
session
Content Management
Contain documents & files to prevent
data leakage
Enforce authentication, copy/paste &
view-only restrictions
Access distributed content/repositories:
SharePoint, Box, Google Drive &
OneDrive
App Security
Contain enterprise apps with a simple
app wrapper or SDK
Enforce authentication & copy/paste
restrictions
Prevent access from compromised
devices
Gateway for Apps
Add per app VPN to Application
Security to integrate behind-the-
firewall data in private apps
Incorporate enterprise data without a
device VPN session
Premier Edition – add critical productivity and security solutions
includes all solutions from Deluxe Edition

26. 26 IBM Security
Enterprise Edition – the ultimate package for protection & productivity
includes all solutions from Deluxe Edition
Mobile Document Sync
Synchronize user content across managed devices
Restrict copy/paste & opening in unmanaged apps
Store content securely, both in the cloud & on devices
Mobile Document Editor
Create, edit & save content in a secure, encrypted container
Collaborate on Word, Excel, PowerPoint & text files
Change fonts & insert images, tables, shapes, links & more
Mobile Threat Management
Detect and analyze mobile malware on compromised devices
Automate remediation via near real-time compliance engine
Take action on jailbroken/rooted devices over-the-air

27. 27 IBM Security
TeamViewer Remote Support for IBM MaaS360
• Connect in seconds to obtain real-world remote device views and perform remote control functions
• Provide rapid IT support for iOS and Android devices and Microsoft Windows laptops and desktops
• Conduct remote device configurations, provisioning, remediation of connectivity issues and more
• Reduce the volume of IT help desk calls and
emailed requests for device support
• Increase productivity for IT administrators and end users

28. 28 IBM Security
Next steps
Demo
Participate in a
deep-dive demo
with our experts
Deploy
Start managing and
securing your mobile
environment
Evaluate
Set up and
configure your
custom trial service
1 2 3

29. 29 IBM Security
Strong adoption in the enterprise
Manufacturing Consumer Public Others
Trusted by over 14,000 customers
Financial Healthcare

30. 30 IBM Security
Complete
UEM
of mobile devices,
laptops & things
Best-in-class
cloud
on a mature,
trusted platform
Open
platform
for integration with
leading IT systems
for actionable insights
& cognitive analytics
What sets IBM MaaS360 apart
Industry-best
user interfaces
for app catalogs &
workplace container
Dedicated to
your success
with 24x7x365 support
by chat, phone, email

31. 31 IBM Security
Best-in-class cloud delivery model
Fast deployment
Simple, self-service
provisioning process
designed for maximum
configurability
Effortless scalability
Trial instantly becomes
production environment
with ability turn up new
devices, users, apps
Automatic upgrades
Continuously updated daily
with new capabilities
and same day OS support
for the latest platform
Cloud expertise
Dedicated team
supporting a mature
platform with unmatched
security certifications
Agility of the cloud for the pace of change in mobility

32. ibm.com/security
securityintelligence.com
xforce.ibmcloud.com
@ibmsecurity
https://www.youtube.com/user/ibmse
curitysolutions
© Copyright IBM Corporation 2017. All rights reserved. The information contained in these materials is provided for informational purposes only, and is provided AS IS without warranty of any kind,
express or implied. Any statement of direction represents IBM's current intent, is subject to change or withdrawal, and represent only goals and objectives. IBM, the IBM logo, and other IBM products
and services are trademarks of the International Business Machines Corporation, in the United States, other countries or both. Other company, product, or service names may be trademarks or service
marks of others.
Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your
enterprise. Improper access can result in information being altered, destroyed, misappropriated or misused or can result in damage to or misuse of your systems, including for use in attacks on others.
No IT system or product should be considered completely secure and no single product, service or security measure can be completely effective in preventing improper use or access. IBM systems,
products and services are designed to be part of a lawful, comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products
or services to be most effective. IBM does not warrant that any systems, products or services are immune from, or will make your enterprise immune from, the malicious or illegal conduct of any party.
FOLLOW US ON:
THANK YOU