Sécurité Mobile : Votre Entreprise est-elle préparée pour 2020?

Forrester Forecasts 2020
Is Your Mobile Strategy Aligned?
Chris Sherman
May 24, 2017
Senior Analyst & Guest Speaker
Forrester Research
Wes Gyure
MaaS360 Portfolio Offering Manager
IBM

2 IBM Security
Housekeeping items
ü Duration – 60 minutes
ü Submit your questions to all
panelists in the Q&A box located in
the bottom right corner of your
screen
ü Recording and slides will be emailed
to you

© 2017 FORRESTER. REPRODUCTION PROHIBITED.
Chris Sherman
Senior Analyst, Forrester Research
Forrester Forecasts 2020
Is Your Mobile Strategy Aligned?

4© 2017 FORRESTER. REPRODUCTION PROHIBITED.
Study demographics
v Online survey of 556 IT and security professionals involved with client, endpoint,
or mobile management and security
v Regions: US, UK, Germany, India and Australia
v Company size: 1,000 or more employees
v Job level: Director and above
v Department: IT/Technology management
v Involvement: Involved with client, endpoint, or mobile management and security

5© 2017 Forrester Research, Inc. Reproduction Prohibited
Enterprises struggle to manage and secure
their endpoint ecosystem

Few organizations have a centralized team to manage
devices
Base: 556 IT and security professionals involved with client, endpoint, or mobile management and security
Source: A commissioned study conducted by Forrester Consulting on behalf of IBM, January 2017
0%
13%
17%
10%
12%
1%
47%
8%
14%
14%
9%
14%
5%
35%
“Which group within your organization currently is primarily responsible for managing the following?”
5%
9%
9%
12%
16%
22%
27%
Line-of-business (non-IT)
Operational technology (OT)
team
Security operations team
Dedicated traditional endpoint
team
Combined mobile/traditional
endpoint team
Dedicated mobile team
Information technology (IT) team
Smartphones/tablets
N=556
PCs/laptops/hybrid PCs
N=556
Servers
N=556
2%
9%
8%
14%
13%
14%
41%
Internet of Things devices
N=318

Device-specific:
Mobile devices; PCs, laptops,
hybrid PCs; servers; and IoT
devices are managed
separately
Device-agnostic:
Controls are focused at the
application and data layers
across all device types,
regardless of endpoint form
factor
“Which of the following best describes your current approach to
managing the different types of devices in use at your organization?”
Device-
agnostic
26%
Device-
specific
74%
The majority of organizations are taking a
device-specific approach to management

Introducing IoT to the enterprise infrastructure comes
with a host of concerns
“When thinking about IoT, how concerned is your organization with the following?”
56%
63%
63%
63%
65%
67%
68%
68%
70%
72%
74%
77%
Firmware updates
Third-party collection of device usage patterns and data from…
Physical compromise due to IoT device failures
IoT device hardening
Denial of service attacks to intelligent devices
Internal hackers
Lack of authentication and authorization for access to intelligent devices
Managing and analyzing data from IoT devices
Use of things in denial of service attacks
External hackers
Privacy violations
Lack of data leak protection
Very/Extremely concerned
57% are managing
IoT devices now;
88% predict they
will be managing
IoT devices in
2020

The amount of data from these endpoints has grown
significantly over the past two years
“How has the amount of endpoint data collected by your organization changed over the past 18 to 24 months?”
“How do you predict the amount of endpoint data collected by your organization will change over the next three years?”
Past 18 to 24 months
9%
56%
35%
Over the next three years
4%
46%
50%
No change Increase(d) by 1% to 49% Increase(d) by 50% or more

UEM and AI will help turn data into
insights

As the volume of data collected from endpoints increases,
AI/cognitive computing will become a necessity
Only 36% of companies
use AI/cognitive
computing to analyze
endpoint data today, but
by 2020, over 80% will
“What are your organization’s plans for implementing artificial intelligence/cognitive
computing to analyze endpoint data?”
36%
26%
19%
7%
11%
3%
Currently implemented
Plan to implement within the next 12 months
Plan to implement by 2020
Currently investigating
Interested, but no plans to investigate or implement
No plans

Base: 481 IT and security professionals involved with client, endpoint, or mobile management and security at companies who have implemented, plan to
implement, or are investigating AI/cognitive computing
AI/cognitive computing plays a significant role
in endpoint management and security
Q19. “How important a role does – or will – artificial intelligence/cognitive computing play
in your organization’s endpoint management and security strategy?”
3% 2%
19%
14%
54%
46%
22% 37%
None Not that important Somewhat important Very important Critical
76% 83%
Endpoint management Endpoint security

By leveraging AI/cognitive computing, orgs
can improve threat detection and remediation
capabilities . . .
“To what extent has – or could – artificial intelligence/cognitive computing improve(d) your
organization’s capabilities in the following security areas?”
72%
73%
74%
74%
75%
76%
78%
79%
79%
80%
Contextualizing security policies to individuals rather than to
devices, groups or whole organization
Reducing false positives
Remediating threats
Suggesting or automating corrective actions
Analyzing unstructured data from external sources
Identifying false positives
Recognizing patterns in security data that signify threats
Alleviating the cybersecurity skills gap
Increasing security process efficiency
Analyzing threats in real time
Moderate/Significant improvement

. . . While also bolstering business efficiencies
and insights
“To what extent has – or could – artificial intelligence/cognitive computing improve(d) your
organization’s capabilities in the following productivity or business insight areas?”
71%
74%
75%
75%
76%
76%
76%
76%
76%
77%
77%
81%
Addressing lack of skills to manage mobility
Uncovering insights from external sources about mobility and how…
Addressing lack of headcount to manage mobility
Addressing lack of time to optimize the management of mobility
Optimizing mobile projects
Reducing costs with managing mobility
Providing key business insights to benefit the company
Making data-driven decisions
Analyzing IoT data
Improving user experience for employees and contractors
Uncovering insights from all of the structured data in mobility…
Making our operations and administration more efficient
Some/Significant Improvement

Unified endpoint management
(UEM) is an approach to
securing and controlling
personal computers (PCs),
smartphones, and tablets in a
connected, cohesive manner
from a single console
31% of organizations will
implement UEM within the
next year; 54% will have it in
place by 2020
Q13. “What are your organization’s plans to implement unified endpoint
management?”
Not implemented and no
plans to evaluate
1%
Interested, but no short-
term plans to evaluate
36%
Currently evaluating
9%
Plan to implement by
2020
23%
Plan to implement within
the next 12 months
16%
Currently implemented
15%
Implementation of UEM will increase as
organizations work toward a more integrated
and device-agnostic management approach

UEM will help automate the practice of
endpoint security

Endpoint Security Requires A Balanced Approach
Prevention
Detection
Control /
Remediation

Prevention
Detection
Control /
Remediation • Addresses attack surface
• Limits time spent on
detection/response
• Doesn’t require frequent updates

Prevention
Detection
Control /
detection/response
• Endpoint visibility and integration
• Catches what gets through
• Threat intelligence required

Prevention
Detection
Control /
detection/response
• Endpoint visibility and integration
• Catches what gets through
• Threat intelligence required
• Automated/assisted
remediation reduces
friction
• Ensures policy
compliance
• Operationalizes
threat intelligence

21
© 2017 FORRESTER. REPRODUCTION PROHIBITED.
Recommendations
› Begin the move towards UEM
› Identify key tasks that would benefit from AI
• Look to reduce friction through automated prevention, detection, and
remediation.
› Build out controls at the app and data levels
› Choose prevention technologies based on your risk appetite and
impact to user experience.

22 IBM Security
Cognitive offers a new approach
• Digging through news & blogs
randomly
• Manually searching in platform
DISCOVER
• Being alerted with insights & news
• Asking questions, getting answers
• Spending hours learning DEFINE • Getting knowledge served to you
• Fumbling for relevancy & best
practices
ASSESS
• Gaining instant understanding &
recommendations
• Developing an action plan ACT • Taking immediate action within context
GO FROM TO

23 IBM Security
IBM MaaS360 with Watson for cognitive UEM
Global Cloud Delivery

24 IBM Security
EMM evolves to Unified Endpoint Management
Devices and things People and identity Apps and content
Leveraging the power of ...
Benefits
• Break thru organizational silos.
• Improved security operations, management
automation & business intelligence.
• Reduced TCO and improved efficiency.
• Intuitive and simple employee experience,
regardless of device type.
• Simplified Administration experience.

25 IBM Security
Manage device that
manages IoT device
Manage embedded
Android/Win10/Linux/
Android Things/Windows IoT device
Manage IoT gateway
to cloud or platform
UEM includes the Internet of Things
Secure apps that
manages IoT device

26 IBM Security
MaaS360 Cognitive Advisor is here to help
Follow Through Actions
Automatically generated Insights provided contextually to Administrator
Data Sources: MaaS360 data captured from device and aggregated for customer & community; Third Party Sources – Structured & Unstructured
ü Delivers actionable insights for improved productivity and protection
ü Enables context-driven best practices and recommendations
ü Discover avenues of improvement based on Peer Benchmarks, Best Practices and New Capabilities
IBM CONFIDENTIAL UNTIL MARCH 20, 2017

27 IBM Security
Discovering a new mobile malware threat
• MaaS360 Advisor With Watson
̶ Self-discovered zero day threat
̶ Impact assessed immediately
̶ Hotlink to enforce a more restrictive device policy
• Other EMM solutions
̶ Random discovery
̶ Research the malware
̶ Manually assess impact
̶ Investigate remediation methods
̶ Implement fix

28 IBM Security
Assessing new privacy regulations
̶ Self-discovered new regulations
̶ Education and potential of impact provided
̶ Recommended next steps
̶ Finds out through the grape vine
̶ Arranges calls with the legal team
̶ Reviews how regulations affect current policies
̶ Reviews how the changes impact users
̶ Manually adjusts policies to become compliant

29 IBM Security
Sizing up the Win 10 migration
̶ Automatically notified of OS, EOL
̶ Assessment of endpoints affected / qualified for
upgrade
̶ Recommended next steps / shortcut to fix provided
̶ Notified by Microsoft about Windows 7 EOL
̶ Sets up a reoccurring meeting with the desktop team
̶ Reviews Win 7 – Win 10 migration with-in a separate
endpoint management system
̶ Continues without a unified platform

30 IBM Security
with Watson – cognitive UEM editions
Solution Essentials Deluxe Premier Enterprise
Device Management
iOS, Android, Windows Mobile, Windows & macOS
✔ ✔ ✔ ✔
App Management
iOS, Android, Windows Mobile, Windows & macOS
✔ ✔ ✔ ✔
Patch and Update Management ✔ ✔ ✔ ✔
Identity Management ✔ ✔ ✔ ✔
Cognitive Advisor ✔ ✔ ✔ ✔
Container App ✔ ✔ ✔ ✔
Mobile Expense Management ✔ ✔ ✔ ✔
Secure Mobile Mail ✔ ✔ ✔
Secure Mobile Chat ✔ ✔ ✔
OS VPN ✔ ✔
Secure Browser ✔ ✔
Gateway for Browser ✔ ✔
Content Management ✔ ✔
Gateway for Documents ✔ ✔
App Security ✔ ✔
Gateway for Apps ✔ ✔
Mobile Document Editor ✔
Mobile Document Sync ✔
Mobile Threat Management ✔
TeamViewer Remote Support O O O O

31 IBM Security
Do more than manage endpoints
Transform your
business with

32 IBM Security
Next steps
Demo
Participate in a
deep-dive demo
with our experts
Deploy
Start managing and
securing your
mobile environment
Evaluate
Set up and
configure your
custom trial service
1 2 3
www.ibm.com/maas360trymaas360.agilly.net

33 IBM Security
Questions & Answers
?

ibm.com/security
securityintelligence.com
xforce.ibmcloud.com
@ibmsecurity
youtube/user/ibmsecuritysolutions
© Copyright IBM Corporation 2016. All rights reserved. The information contained in these materials is provided for informational purposes only, and is provided AS IS without warranty of any kind, express or implied. Any
statement of direction represents IBM's current intent, is subject to change or withdrawal, and represent only goals and objectives. IBM, the IBM logo, and other IBM products and services are trademarks of the International
Business Machines Corporation, in the United States, other countries or both. Other company, product, or service names may be trademarks or service marks of others.
Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your enterprise. Improper
access can result in information being altered, destroyed, misappropriated or misused or can result in damage to or misuse of your systems, including for use in attacks on others. No IT system or product should be
considered completely secure and no single product, service or security measure can be completely effective in preventing improper use or access. IBM systems, products and services are designed to be part of a lawful,
comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products or services to be most effective. IBM does not warrant that any systems,
products or services are immune from, or will make your enterprise immune from, the malicious or illegal conduct of any party.
FOLLOW US ON:
THANK YOU

Sécurité Mobile : Votre Entreprise est-elle préparée pour 2020?

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Sécurité Mobile : Votre Entreprise est-elle préparée pour 2020?

Similar to Sécurité Mobile : Votre Entreprise est-elle préparée pour 2020? (20)

More from AGILLY

More from AGILLY (20)

Recently uploaded

Recently uploaded (20)

Sécurité Mobile : Votre Entreprise est-elle préparée pour 2020?