Jamf Pro and Security: How Device Management Can Help Better Your Security Posture

Transcript

1. © JAMF Software, LLC How Device Management Can Help Better

   Your Security Posture 2:45 - 3:30 p.m. UP NEXT
2. None

3. © JAMF Software, LLC Matt DiRose Business Development & Enablement

   SE Jamf

4. © JAMF Software, LLC Jamf Pro and Security: How Device

   Management Can Help Better Your Security Posture Presentation agenda: Definitions Common Security Configurations Reporting Conditional Access

5. © JAMF Software, LLC Definitions Security Posture (NIST): The security

   status of an enterprise’s networks, information and systems based on information assurance resources (e.g., people, hardware, software, policies) and capabilities in place to manage the defense of the enterprise and to react as the situation changes.

6. © JAMF Software, LLC macOS Configurations Security & Privacy FileVault

   2 Key Escrow Enable Gatekeeper Firewall

7. © JAMF Software, LLC macOS Configurations Encryption FileVault 2 Key

   Escrow

8. © JAMF Software, LLC

9. © JAMF Software, LLC Firewall Settings Control Incoming connections via

   Configuration Profile or Script macOS Configurations

10. © JAMF Software, LLC

11. © JAMF Software, LLC Restricted Software Set what software users

    cannot use or install on their macOS computers macOS Configurations

12. © JAMF Software, LLC

13. © JAMF Software, LLC Verify macOS and Apps are up-to-date

    Patch Management Running a Policy to enable Auto-Update via App Store Run a Policy to check for updates on the client Mac macOS Configurations

14. © JAMF Software, LLC Patch Management Reports Inventory of software

    titles and versions Automate deployment of patched titles with Patch Policies macOS Configurations

15. © JAMF Software, LLC

16. © JAMF Software, LLC System Preferences Bluetooth Management Date &

    Time Sharing iCloud macOS Configurations

17. © JAMF Software, LLC Functionality (Institutionally-Owned) Managed Open-In Disable Erase

    All Content and Settings Cellular Data App Settings iCloud Forcing Encrypted Backups iOS Configurations

18. © JAMF Software, LLC Functionality (Institutionally-Owned) Managed Open-In iOS Configurations

19. © JAMF Software, LLC

20. © JAMF Software, LLC Functionality (Institutionally-Owned) iCloud iOS Configurations

21. © JAMF Software, LLC

22. © JAMF Software, LLC Setup (Institutionally-Owned) Ensure Enrollment Profile cannot

    be removed Present a consent message and description of enrollment profile iOS Configurations

23. © JAMF Software, LLC Setup (Institutionally-Owned) Ensure Enrollment Profile cannot

    be removed iOS Configurations

24. © JAMF Software, LLC

25. © JAMF Software, LLC Setup (Institutionally-Owned) Present a consent message

    and description of enrollment profile iOS Configurations

26. © JAMF Software, LLC

27. © JAMF Software, LLC

28. © JAMF Software, LLC Screen Lock Setting parameters to when

    a screen auto locks iOS & macOS Configurations

29. © JAMF Software, LLC

30. © JAMF Software, LLC Password and Passcode Length Complexity Requirements

    Password Rotation iOS & macOS Configurations

31. © JAMF Software, LLC

32. © JAMF Software, LLC

33. © JAMF Software, LLC Wireless Access Deployment of a Wireless

    network to a managed device iOS & macOS Configurations

34. © JAMF Software, LLC

35. © JAMF Software, LLC Remote Lock & Wipe macOS Remote

    Lock Remote Wipe iOS Lost Mode Timely Termination iOS & macOS Configurations

36. © JAMF Software, LLC

37. © JAMF Software, LLC Different Reporting Methods Smart Groups Advanced

    Searches History/Audit Logs Partner Integrations Reporting

38. © JAMF Software, LLC Smart Groups Smart Groups change based

    on reported inventory Great option for quick dashboard views of reporting Customize with Extension Attributes Email Notification on Membership Change Reporting

39. © JAMF Software, LLC

40. © JAMF Software, LLC Advanced Searches Advanced Searches allow you

    to schedule emailed reports Criteria-based search to focus on specific needs Reporting

41. © JAMF Software, LLC

42. © JAMF Software, LLC History/Audit Logs See who is viewing

    what, when events occurred, or if policy application has failed Reporting

43. © JAMF Software, LLC What is it? How does it

    work? Benefits Conditional Access

44. © JAMF Software, LLC What is it? Setting Requirement of

    device compliance to access company resources Conditional Access

45. © JAMF Software, LLC How does it work? Mac’s enrolled/managed

    by Jamf Pro Conditional Access

46. © JAMF Software, LLC Benefits The right people have access

    to the right resources If a device is not compliant, users can use Self Service for remediation Support a more fluid model of employee workspaces Conditional Access

47. © JAMF Software, LLC https://jamf.it/iOS_Security - iOS Security Checklist https://jamf.it/macOS_Security

    - macOS Security Checklist https://jamf.it/Conditional_Access - Conditional Access Whitepaper https://marketplace.jamf.com - Partners for Jamf Integrations Resources

48. THANK YOU!

49. © JAMF Software, LLC Thank you for listening! Give us

    feedback by completing the 2-question session survey in the JNUC 2019 app.