AppleInsider is supported by its audience and is eligible to earn an Amazon Associate and Affiliate Partner commission on qualifying purchases. These affiliate partnerships do not influence our editorial content.
Mobile device management vendor Kandji has launched Device Harmony, a platform that aims to add more security to an MDM system that will benefit both the company’s IT and InfoSec teams.
Kandji’s Device Harmony is based on the belief that existing MDM systems do not serve both general IT teams and InfoSec teams managing security. While IT manages the usability of devices on the network, InfoSec must monitor and defend against attacks and other security risks on the network.
With two quite different goals, the two teams usually worked quite separately. “But today, IT and InfoSec teams need to work together to keep their business and their users safe and productive,” says Founder and CEO Adam Pettit. “To win now, these teams need shared data and systems.”
Device Harmony connects a number of categories of tools and features into one package: Device Management, Vulnerability Management, Endpoint Detection and Response, Endpoint Visibility, and Endpoint Compliance. With shared intelligence, automation, and cross-functional workflows, teams can work together using the same tools and with few compromises.
“With Device Harmony, these teams can unlock a complete view of every endpoint and create a shared reality between IT and InfoSec, so they can recognize and remediate risks within a single platform, reducing thus the gap between problem identification and problem solving,” Pettit continued.
The founder continued, “Now IT and InfoSec teams can work together to navigate their fleets and take action, while providing users with the most elegant Apple experience possible while maintaining a strong security posture.”
Device Harmony Vulnerability Management now provides a comprehensive view of macOS vulnerabilities, descriptions, history, severity, affected software, and the devices that software is installed on. Teams can then use Kandji to mitigate the vulnerability by upgrading and blocking apps, and running scripts to uninstall apps.
Rather than a periodic scan, Kandji instead uses a lightweight service within the Kandji agent running on the Mac. Leveraging Apple’s Endpoint Security framework, the agent listens to application-related events to determine if new vulnerabilities have been introduced or patched, with information provided in real time.
The Endpoint Detection and Response pillar uses the agent to monitor all files and applications on the Mac in real time, providing a detailed view of detected events, threat names and classification, and other system-relevant actions major. The agent can then terminate the malicious processes and quarantine the files.
The approach also uses pre-execution and post-execution methodologies, with the former able to remove “almost all malware variants” and reduce the risk of malware executing before the security software does. can stop him. Post-execution, there is threat detection without needing to see the malware first, looking for actions typically taken by the malware while it is running.
All Device Harmony features are deployed through the Kandji agent, built using Swift. Apple technologies that are exclusive to MDM solutions are also used to ensure that the agent is active and installed.
Device Harmony’s Vulnerability Management and Endpoint Detection and Response branches are being rolled out to select Kandji customers, with general availability to all users within weeks. Device visibility and device compliance will be previewed to customers in early 2023.