VMware using Carbon Black to secure the distributed workforce

Announced advance security for the public and private clouds, security operations, and distributed workforces.

Realising the future of work has shifted due to the COVID-19 pandemic, VMware is looking to centralise the security controls its customers now need, saying legacy networking and security approaches lack the automation, cloud scale, and intrinsic security needed to connect and protect apps, data, and users that are globally distributed.

This idea, vice president of VMware's advanced technology group Chris Wolf said, is key to the company's new VMware Future-Ready Workforce solutions. He labelled them as providing "exceptional workforce experiences", end-to-end zero trust security controls, and simplified management.

"The Future-Ready Workforce solutions combine industry-leading Secure Access Service Edge (SASE), Digital Workspace, and endpoint security capabilities to help IT manage and optimise secure access to any app, on any cloud, from any device while providing a simple, high performant, and a safer user experience for the distributed workforce," he told ZDNet.

The VMware SASE platform, the company explains, is a cloud-first offering that "delivers application quality assurance, intrinsic security, and operational simplicity, and is ideal for organisations that are supporting a work from anywhere workforce".

As Wolf explained, legacy networking and security approaches lack the cloud scale and intrinsic security required to connect and protect apps, data, and users across a global business fabric. He said this leads to the accelerated adoption of SD-WAN and the emergence of Secure Access Services Edge (SASE).

The VMware SASE platform combines SD-WAN with cloud-delivered security. VMware is adding Secure Web Gateway, Cloud Access Service Broker, and expanded zero trust network access capabilities to the VMware SASE platform.

Under the SASE offering, VMware has expanded its global network to over 2,700 cloud service nodes across 130 points of presence.

VMware is also announcing VMware Edge Network Intelligence, which is based on technology acquired from Nyansa that uses machine learning-based predictive analysis, actionable intelligence, and proactive remediation. Meanwhile, VMware vRealize Network Insight 6.0 improves VMware SD-WAN visibility.

See also: Remote working: Security tips for working from home

The Dell EMC SD-WAN solution powered by VMware has also been expanded to include built-in LTE to support mobile clinics or temporary sites, as well as higher reliability for work from home.

Meanwhile, VMware Secure Access, a zero trust network access service that combines VMware Workspace ONE and VMware SD-WAN into the one cloud-hosted offering, is touted by the company as enabling more secure, optimised, and high-performance access for remote and mobile users.

The new VMware Cloud Web Security service will integrate Menlo Security's secure web gateway, cloud access service broker, and remote browser isolation capabilities natively into the VMware SASE solution.

While the company's VMware NSX firewall will be integrated into the VMware SASE platform for "cloud-delivered firewall as a service" in both single-tenanted and multi-tenanted deployment options.

"When you look at SASE, that's solving real world work 2.0 problems that our customers have, we see that as a fantastic opportunity for VMware and our customers," Wolf added.

Building on its Workspace ONE and Workspace Security offerings, VMware has also announced VMware Workspace Security Remote and VMware Workspace Security VDI.

Workspace Security Remote, Wolf said, combines unified endpoint management (UEM), endpoint security, and remote IT support into an integrated solution for protecting Mac and Windows 10 devices.

Workspace Security VDI, meanwhile, integrates VMware Horizon and VMware Carbon Black Cloud with the goal of helping deliver highly secure virtual desktops and applications.

See also: VMware goes shopping with $2.7B Pivotal purchase, $2.1B Carbon Black acquisition

"The distributed workforce introduces a number of challenges ranging from employee on-boarding, visibility and compliance, security, employee safety, and more," VMware said. "In order to address these challenges and successfully embrace the future of work, organisations need to re-think how they approach security, experience and operational complexity associated with the IT environment."

Adding to the company's "new innovations to deliver intrinsic security to the world's digital infrastructure" play, is the VMware Carbon Black Cloud Workload.

"The solution combines Carbon Black's security expertise with VMware's deep knowledge of the data centres to build security into workloads," the company said.

"Tightly integrated with vSphere, VMware Carbon Black Cloud Workload provides agentless security that alleviates installation and management overhead and consolidates the collection of telemetry for multiple workload security use cases."

VMware Workspace Security Remote and VMware Workspace Security VDI are already available; VMware Edge Network Intelligence is expected to be available by the end of October; BYOD capabilities for VMware Secure Access are expected to be available by the end of January 2021; VMware Cloud Web Security is expected to be available from around February, and NSX Firewall as a Service for the VMware SASE Platform is expected to be available some time next year.

VMware Carbon Black Cloud Workload is expected to be available in November 2020 and a month later, the Carbon Black Cloud module for hardening and securing Kubernetes workloads will be available. VMware expects the Carbon Black Cloud Workload will expand later this year to include a new Carbon Black Cloud module for hardening and securing Kubernetes workloads.

MORE FROM VMWORLD 2020