Introducing Secure Access for the Next Generation Bram De Blander Sales Engineer bdeblander@pulsesecure.net
What CIOs are asking Mobility Cloud Apps IoT Is our firewall security and EMM system good enough? How do we secure the cloud like the data center? How do we boost worker productivity? What s on our corporate network? A common policy framework to eliminate security gaps User identity and device identity for uniform security policies Mobile apps, BYOD and SSO for happy and productive users Centralized visibility with multivendor enforcement for complete control
O U R M I S S I O N Delivering secure access solutions for people, devices, things and services
Security is about access not control Great UX Mobile Enabled Cloud Enabled
O U R S E C U R E A C C E S S S T O R Y Extend your Secure Access solution for the datacenter, to mobile devices, and Office 365, Salesforce and Box.
Dialing Up IT Transformation BYOD is here for 85% Cloud is an option for 55% IOT is coming for 40% IDG Research Services Gartner Gartner 6
What is the Focus Technology Overlapping VPN (SSL/IPSec) Loadbalancing Server/Virtualization Secure/User/Device Access Operating System MDM-solutions FW-solutions
Off-premise The need Managed Devices Corporate Data Connected Trucks IoT Tablets & Smart Phones Internet Café Remote Users Partners Corporate Data Customers Visitors WiFi Users Climate Control IoT Unmanaged Devices Conference Rooms Office Users On-premise
Old World: PC and Datacenter V S New World: Hybrid IT Off-premise Anywhere Remote Access Secure Access
The New Reality/Challenges All Major OSs Mobility On-the-go Home network Untrusted LAN Guest Wifi Cloud Security Datacenter Consolidation Ent Web GW Mobile GW VPN GW VDI GW NAC Mobile Apps Apps Cloud SaaS Apps Hybrid IT, Cloudification Datacenter Enterprise applications VDI, terminal services Cloud IaaS AWS, Azure
Pulse Secure - Secure Access Unified Client Unified client for VPN and NAC Unified policy and enforcement Endpoint compliance Off premise: Employees, Contractors, and Partners Pulse One and Pulse Workspace BYOD Ready PSA PSA Onboarding Guest Management On-premise & Off-premise User Endpoints Pulse Connect Secure Federation Services Protected Resources Pulse Policy Secure Pulse Secure Ecosystem (MDM, SIEM, IPS, etc.) On premise: Employees and Guests Turnkey Profiler Firewall Integration MDM/IAM Integration Cloud Secure User Endpoints Unmanaged Endpoints (Phones, Printers, etc.) Switches and WLAN Firewall (optional L4-L7)
Seamless Cloud Access Remote & On-Premise Benefits Leverage existing PCS infrastructure Guarantee same compliance based access SaaS SAML Metadata exchange P ULS E CONNE CT S E CURE Session Federation Cloud Secure AD P ULS E CLI E NT Authentication & Device Compliance P ULS E P OLICY S E CURE On-Premise Users
G e n e r a l D a t a P r o t e c t i o n R e g u l a t i o n Pulse Secure s solutions help companies navigate GDPR regulations with secure access simplicity
Are organizations ready for EU GDPR? On the go In the field At work How to protect employee privacy? Who has access to sensitive customer information? How to secure access to sensitive information based on employee role?
With GDPR, Mobile Security is NOT a choice!
Generation Mobile is not a Myth Today s employees ARE using personal devices to connect to the corporate network Today s employees will only make secure BYOD policies a success if they are easy to use
Top Three Reasons Simple to deploy and use Secures corporate applications and data on personal devices Protects employee privacy Customers buy and love Pulse Workspace
With GDPR, Network Access Policies are NOT a choice!
Myths About NAC Don t always believe what you hear No need for granular access policies associated with NAC solutions I am a SMB enterprise, NAC is only necessary for Large enterprises Internet of Things (IoT) challenge? Not in my company
Top Three Reasons Customers buy and love Pulse Policy Secure Proven scalable enforcement, not just visibility Smooth roaming from remote to local network Unified Client
Secure Access helps organizations enforce GDPR compliance Pulse Cloud Secure SSO and access control Pulse Connect Secure Remote Access Mobile Access Pulse Policy Secure Policy Control Network Access Pulse Workspace Asset on-boarding and protection BYOD Enablement Pulse One Management Data Analytics Pulse Secure Appliance Scalable Secure platform
I n t r o d u c i n g Pulse Access Suite
Pulse Access Suite Three solution editions E S S E N T I A L S A D V A N C E D E N T E R P R I S E Physical and virtual platforms Platform options for scale P L A T F O R M O P T I O N S P L A T F O R M S
W H Y T H E A C C E S S S U I T E? Advanced Edition Powers IT initiatives
Box IoT VPN Onboarding EMM Mobile Posture Assessment Enforcement Cloud Salesforce Device Discovery MAM Multifactor Auth Identity and Access Management SSL VDI Apps Compliance Thin App Mobile Gateway Provisioning Certs Guest Access HTML5 Cloud Migration Office365 Captive Portal Secure Browser Passwords Mobile Security MDM Self-Service BYOD
Secure Sign-on SAML based SSO with device compliance checking Enable Cloud Services Cloud Secure capabilities extend data center security to Office 365, Box and other cloud services No Passwords Strong auth that s easy for the user and secure for the enterprise Device Compliance Ensure device compliance before laptops and mobile devices access information in the cloud
Workspace Use its core EMM functionality for BYOD and mobile app security or leverage an existing solution Mobilize Data Center Apps The Secure Access Suite simplifies and secures mobile access to the data center On-demand Per-App VPN Support any use case with a best-inclass Layer 3, Layer 4 VPN that includes industry-leading rewriting capabilities Device Compliance Ensure device compliance with broad endpoint OS support, host checking, and the ability to create complex remediation and enforcement rules for laptops and mobile devices
How the Advanced Edition Works 4 Application Traffic 1 PULSE CLIENT + WORKSPACE PULSE ONE 2 3 Endpoints with SSO, certificate authentication & host checking Policy and compliance information Federation with service providers for delegated authentication Normal traffic for data center apps cloud services use tunnel for SSO and authorization only PULSE CO NNECT SECURE AD Data Center
W H Y T H E A C C E S S S U I T E? Enterprise Edition Boosts network security
Box IoT VPN Onboarding EMM Mobile Posture Assessment Enforcement Cloud Salesforce Device Discovery MAM Multifactor Auth Identity and Access Management SSL VDI Apps Compliance Thin App Mobile Gateway Provisioning Certs Guest Access HTML5 Cloud Migration Office365 Captive Portal Secure Browser Passwords Mobile Security MDM Self-Service BYOD
Visibility with Compliance Enforcement A dashboard view of what s on your network with multivendor policy enforcement Continual Assessment Discover and monitor what s on your network with Profiler for dashboard visibility and reporting. Contextual Access Use user identity and device identity to control access of the corporate network and IT resources. Multivendor Enforcement Share contextual information with thirdparty security enforcement points including firewalls, switches and wireless LAN controllers.
Secure Productivity Guest Access Give contractors, partners and guests secure access via a self-service portal and out-of-the box wizards and configurations for admins. Secure contractors, partners and guests while giving employees anywhere access to the cloud Cloud Access Give employees campus access to Office 365, Box, Salesforce and other cloud services.
How The Enterprise Edition Works 3 Guest Access Profiling + Policy Secure SaaS Guests Firewall Protected Resources Connect Secure Switch 2 Federation for Cloud Access Pulse Client (Employees) Wireless LAN 4 Multivendor Enforcement Inside network 1 Unified Client
W H Y T H E A C C E S S S U I T E? Simplifies planning & budgeting
Software Suite Easy as 1-2-3 Appliance Platform Service Options
Pick the Right Suite for You Essentials Advanced Enterprise Data Center + Mobile, Cloud Access and Visibility + Device and Network Security
Select Your Appliance Pulse Secure Appliance Small Office Branch Office Mission Critical Data Center Virtual Appliance VMware KVM Hyper-V
Tailor Your Support Software Services Gold Platinum Hardware Services Same Day Same Day with Onsite Tech Next Day Next Day with Onsite Tech
Pulse Access Suite
Mapping Product/Services to Solutions Product / Service Essentials Advanced Enterprise Pulse Connect Secure Pulse One (Cloud) Express Pulse Connect Secure Add-Ons: Device Onboarding Pulse Cloud Secure and Pulse Workspace Secure Mobile Browser NEW Pulse Profiler Pulse Policy Secure Software Support Included (Gold or Platinum)
Pulse Access Suite SaaS PulseOne MAM On-Prem Policy Secure w/ Profiling Firewall Pulse Workspace Switch Wireless LAN Protected Resources Connect Secure Pulse Client Pulse Client (Employees) Guests Unprotected Resources Essentials Edition Advanced Edition Enterprise Edition