Upload
others
View
5
Download
0
Embed Size (px)
Citation preview
4 Ways to Achieve Zero Trust Security with Office 365 A Digital Workspace Speeds Adoption, Improves Protection
Introduction | | |The Security Mandate A 4-Part Approach Conclusion
Employee Satisfaction is a Top Priority for Today’s IT Teams Technology changes at a breakneck pace, which triggers new expectations from end
users, who expect their IT department to provide digital experiences that match the
flexibility of consumer applications. Modern IT departments must deliver both flawless
performance and top-of-the-line security.
But what works for one person doesn’t necessarily work for another. Everyone has
different preferences, and most people want to use their personal phones, tablets,
or laptops to check business emails, perform basic job functions, and access enterprise
data and apps on different devices.
Choice as a talent retention strategy
Offering employees freedom and flexibility is critical in today’s competitive landscape.
As the talent shortage grows, companies want to hire and retain the best people, and when
employees are happier, they’re more likely to be productive, do great work, and stick around.
But many IT organizations need to get the most out of limited budgets, and must work
across traditional silos, which makes it difficult to adopt new technologies. But here’s the
reality: No matter the reason, sticking with legacy approaches to employee workspaces
simply doesn’t work anymore.
Introduction | | |A 4-Part Approach ConclusionThe Security Mandate
To help employees stay connected and productive, IT organizations often start with
Office 365—and quickly discover that they need to deploy, manage, update, and
secure these apps on both corporate-owned and personal devices. Providing native
apps for SaaS, Windows, Mac, and mobile is a massive challenge—but it’s far easier
with a modern solution that enables choice, management simplicity, and security.
A modern digital workspace offers a unified platform that integrates with widely used
apps such as Office 365 to secure workloads and devices, no matter where they are
or which network they’re on. With a well-managed digital workspace, you can reach
goals for your business and customers while offering highly functional, seamless, and
satisfying digital experiences for employees—all without putting critical data at risk.
The key? A digital workspace built on the principle of Zero Trust security.
1 Gartner, Gartner Says the Majority of Digital Workplace Initiatives Will Fail to Establish New Ways of Working Through 2021, May 2019
Successful digital workplace programs are less about technology and more about understanding what affects the employee experience and making necessary changes to the work environment.1
GARTNER 2019
Employees Need More—But You Can’t Compromise Your Security
Introduction | | |The Security Mandate A 4-Part Approach Conclusion
When It Comes to Security, Verify Everything Without a digital workspace, protecting all your apps, users, devices, and data
can seem like an insurmountable task. With a digital workspace, a single platform
can provide a streamlined way to stay on track and in control—and it all starts with
the concept of Zero Trust.
What’s Zero Trust?
Coined by Forrester, the Zero Trust model is rooted in the belief that nothing
should be automatically trusted, whether it’s inside or outside data center
perimeters. Zero Trust leverages machine-learning insights across users, devices,
and other third-party security products to keep risks low without impeding
performance or employee experience.
Instead of chasing risks, the Zero Trust model allows IT to stay in control and take
a proactive approach to protecting their company. It’s built-in rather than bolted
on for intrinsic protection anywhere, anytime.
| | |A 4-Part Approach ConclusionThe Security MandateIntroduction
Deploying Office 365 is only half the battle. The other half is driving adoption. With
a digital workspace, you can enable the ease of use and security needed to give users
the access they want, when they want it—so they’ll be more likely to use Office 365
apps. That way, they can edit a spreadsheet in Windows, share results via real-time
collaboration in SaaS, and respond to an update email from a personal mobile device
while they’re on the go.
An intelligent approach consists of four critical tactics:
How to Boost Office 365 Adoption
Support and Secure Diverse Devices and Apps 1
3 Make Intrinsic Security a Priority
2 Streamline Management at Scale
4 Improve Employee Experiences
| | |A 4-Part Approach ConclusionThe Security MandateIntroduction
Support and Secure Diverse Devices and AppsProviding support for a wider variety of devices and apps helps employees do their best work.
When teams and individuals use the devices they’re most comfortable with, they’re more
productive—and it’s up to IT to give them those choices.
A successful digital workspace will support:
• Corporate-owned and BYO devices. Both corporate and personal devices should all have
the same level of protection. Employees using Office 365 in a digital workspace must have
a consistent experience that offers seamless and secure access—anytime, anywhere.
• Desktop, mobile, and other form factors. Productivity grinds to a halt when IT has to spend
days or weeks provisioning and deploying apps across desktop, mobile, and other devices.
Workers can’t get their jobs done if they’re busy relearning controls across various platforms.
• A broad range of apps. Employees need the ability to access different apps—including SaaS
apps, Mac apps, and more—on different devices, with a consistent access experience
designed to minimize delay and frustration.
1
| | |A 4-Part Approach ConclusionThe Security MandateIntroduction
Employees need simple, secure access to all their apps, including:
• Conditional access. Grant the right people access to the right information at the right times,
on an ongoing basis.
• Unified Endpoint Management (UEM). Secure and control all your devices and endpoints
from a single console that gives you visibility into what matters most.
• A comprehensive app catalog. Empower employees with an easy-to-use app catalog that
doesn’t leave them looking for unsecured options that might pose a security risk.
| | |A 4-Part Approach ConclusionThe Security MandateIntroduction
Streamline Management at ScaleManaging end-user apps and devices can get out of control fast. In addition to Office 365 apps,
most IT organizations also provide a variety of other apps, each of which has different security
and access requirements across users and environments. IT must develop a comprehensive
strategy that includes all apps, not just Office 365, even when they’re off the domain.
To make it work, look for a digital workspace platform that makes it easy to support this varied
fleet of devices and apps. A platform that uses a Zero Trust approach will help you stay in
compliance, while streamlining management for different devices, OSs, passwords, and more.
• Improve compliance without increasing your workload. Zero Trust uses automated
remediation that provides identity management, evaluates network traffic, and enforces
compliance policies for users, devices, apps, and the network. It should enable conditional
access, which limits access to the right users—not only during authentication or authorization,
but continuously.
• Close security gaps with unified management. When you manage Office 365 and
other apps from a single digital workspace, you can ensure security policies are applied
consistently across all devices, OSs, and users. And when that workspace is built on the
foundation of Zero Trust, it lowers your security risks and provides you with greater
visibility across your entire environment.
2
| | |A 4-Part Approach ConclusionThe Security MandateIntroduction
Make Intrinsic Security a PriorityIntrinsic security enables IT to put protection at the forefront without hindering performance
or driving up costs. A digital workspace with intrinsic security uses automation to ensure that
even the little things aren’t overlooked. And it’s built-in instead of bolted on, following
individual workloads and users no matter where they go.
A secure digital workspace platform includes:
• Data loss prevention (DLP). DLP controls must be implemented across all device platforms
and the entire application ecosystem to be effective. A unified digital workspace platform
can help you extend those controls to all your Office 365 apps—and beyond.
• Intelligent risk scoring. On a unified platform, IT teams can use automation to assess
user behavior and device context. Together with third-party security tools, you can see
the bigger picture and calculate risks based on past and present patterns.
• Compliance and policy. Compliance requirements and security policies need to follow
devices everywhere to meet regulations. Automation can keep devices in compliance,
no matter where they go.
• Automated policy enforcement. Automated policies follow users, devices, and apps,
while simultaneously remediating policies as environments or regulations change.
• Multi-factor authentication. Enable a higher level of authentication for certain access
scenarios. For example, extra authentication may be required for apps that contain
sensitive information, or for access attempts from unknown devices.
3
| | |A 4-Part Approach ConclusionThe Security MandateIntroduction
Improve Employee ExperiencesToday, a great deal of work happens through digital interactions—and improving those
experiences for employees will become even more urgent in the years to come. As organizations
continue to explore more ways to attract and retain top talent in a fiercely competitive landscape,
it’s important to set up a solid foundation for employee satisfaction. Technology will continue to
change, but the core principles of freedom, flexibility, performance, and security will never change.
Look for digital workspace solutions that offer:
• Quick, simple access. No one wants to waste valuable time trying to wrangle multiple
passwords and logins. Even though they’re supposed to provide protection, the frustration
factor often causes employees to try unsecured solutions. Within a digital workspace, Office
365 and all your other apps offer:
– Single sign-on (SSO). Workers only need to worry about one username and one
password. With just a few clicks or taps, they can access all their apps and data without
compromising security.
– App catalog. Give employees the freedom to choose from a wide variety of high-
functioning, secure apps, all presented in an easy-to-access catalog.
– Self-service. Empower users by allowing them to access new applications on their own,
without making a formal request. Eliminate long helpdesk wait times by using self-service
capabilities that let users troubleshoot and solve minor issues in minutes.
4
| | |A 4-Part Approach ConclusionThe Security MandateIntroduction
• Onboarding/off-boarding (day 0/1 support). Employees shouldn’t have to wait days
or weeks to get the tools they need to do their job. Out-of-the box functionality and
ongoing support can help them get started quickly—and keep them productive—with
minimal disruption. It’s equally important to make off-boarding simple and stress-free.
• Consistent experiences across devices. Ensure apps remain the same across devices.
From desktop to mobile, workers should be able to rely on tools that don’t change
functionality and are easy to use and understand.
| | | ConclusionA 4-Part ApproachThe Security MandateIntroduction
Join us online:
VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright © 2019 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. and its subsidiaries in the United States and other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: 14315_VMW_O365_ZT Security_eBook_FINAL_09272019_sf
DOWNLOAD GUIDE: START YOUR DIGITAL WORKPLACE JOURNEY WITH OFFICE 365
Take the Next Step
Better Security Starts with a Digital Workspace When employees can access Office 365 apps wherever they go, they’re more likely to
use them. And when they do, IT can keep critical data and information safer. A digital
workspace is imperative—but not just any one will do. It has to be powerful, secure,
intelligent, and ready to evolve at a moment’s notice. It must support the goals of both
the business and its employees, as the workplace becomes increasingly perimeter-free.
VMware Workspace ONE™ is the platform best positioned to help you navigate your
journey to a digital workspace, allowing you to start with Office 365 and add other apps
at your own pace. It helps you put employees first, while seamlessly securing all your
apps and data. And with established leadership in unified endpoint management,
VMware provides the solutions, tools, and support you need to build enthusiastic
support from employees, on the day they start and every day afterward.