Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

11/12/2019
01:40 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Jamf Launches Jamf Protect, Enterprise Endpoint Protection Built for Mac

Jamf Protect uses native Apple security tools and on-device analysis to give security teams visibility into their Mac fleet.

MINNEAPOLIS , Nov. 12, 2019 (GLOBE NEWSWIRE) -- Today at the 2019 Jamf Nation User Conference (JNUC), Jamf announced the launch of Jamf Protect, an enterprise endpoint protection solution built for Mac. Jamf Protect leverages native Apple security tools and on-device analysis of macOS activity to create customized telemetry that gives enterprise security teams unparalleled visibility into their macOS fleet and the ability to respond and block identified threats. Jamf Protect is now generally available to commercial organizations in the United States.

“Because of Jamf’s Apple-first and Apple-only approach, Jamf Protect is unique in how it provides a granular view of native macOS security capabilities and an analysis of real-time events, which is essential to helping security teams gain visibility into their Mac fleet,” said Josh Stein, Director of Product Strategy, Jamf Protect. “Jamf Protect monitors for system-wide activity, enabling security teams to take action against Mac-based threats which may otherwise go unnoticed, all while allowing organizations to embrace new OS functionality from day one.”

Jamf Protect ensures enterprise security while upholding the Apple experience end users crave, along with the ability to:

  • Gain native tool visibility – Gain and extend visibility into macOS built-in security tools like XProtect and Gatekeeper for awareness and improved reporting, compliance and security posture.
  • Attain on-device activity analysis – Receive real-time alerts to analyze activity on the device and choose whether to proactively block, isolate or remediate threats.
  • Secure data control – Collect granular control over what data is collected and where it is sent, including directly into your existing SIEM.
  • Champion end-user experience – Through Jamf Protect’s kextless agent and minimal use of device resources, preserve an end-user experience that keeps employees productive and happy.
  • Support from day-one – Using Apple’s newly-released Endpoint Security Framework, teams can support the latest and most secure macOS experience from the first day a new operating system is available.
  • Audit against CIS benchmarks – Understand and increase your security posture fleetwide with the ability to measure against CIS benchmarks.

Jamf Protect was recently issued CIS Benchmarks certification by CIS® (Center for Internet Security, Inc). Organizations that leverage Jamf Protect can now ensure that the configurations of their critical assets align with the CIS Benchmarks consensus-based practice standards.

“Cybersecurity challenges are mounting daily, which makes the need for standard configurations imperative. By certifying its product with CIS, Jamf has demonstrated its commitment to actively solve the foundational problem of ensuring standard configurations are used throughout a given enterprise,” said Curtis Dukes, CIS Executive Vice President of Security Best Practices & Automation Group. 

“As Mac continues to grow in the enterprise, a security solution focused on increasing an organization’s Mac security posture is needed more than ever,” said Dean Hager, CEO, Jamf. “We’re excited to bring the same Apple expertise to security that we’ve brought to device management, and continue to fulfill our mission of helping organizations succeed with Apple.”

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
Stop Defending Everything
Kevin Kurzawa, Senior Information Security Auditor,  2/12/2020
Small Business Security: 5 Tips on How and Where to Start
Mike Puglia, Chief Strategy Officer at Kaseya,  2/13/2020
5 Common Errors That Allow Attackers to Go Undetected
Matt Middleton-Leal, General Manager and Chief Security Strategist, Netwrix,  2/12/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-20477
PUBLISHED: 2020-02-19
PyYAML 5.1 through 5.1.2 has insufficient restrictions on the load and load_all functions because of a class deserialization issue, e.g., Popen is a class in the subprocess module. NOTE: this issue exists because of an incomplete fix for CVE-2017-18342.
CVE-2019-20478
PUBLISHED: 2020-02-19
In ruamel.yaml through 0.16.7, the load method allows remote code execution if the application calls this method with an untrusted argument. In other words, this issue affects developers who are unaware of the need to use methods such as safe_load in these use cases.
CVE-2011-2054
PUBLISHED: 2020-02-19
A vulnerability in the Cisco ASA that could allow a remote attacker to successfully authenticate using the Cisco AnyConnect VPN client if the Secondary Authentication type is LDAP and the password is left blank, providing the primary credentials are correct. The vulnerabilities is due to improper in...
CVE-2015-0749
PUBLISHED: 2020-02-19
A vulnerability in Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on the affected software. The vulnerabilities is due to improper input validation of certain parameters passed to the affected software. An attacker ...
CVE-2015-9543
PUBLISHED: 2020-02-19
An issue was discovered in OpenStack Nova before 18.2.4, 19.x before 19.1.0, and 20.x before 20.1.0. It can leak consoleauth tokens into log files. An attacker with read access to the service's logs may obtain tokens used for console access. All Nova setups using novncproxy are affected. This is rel...