Security and management innovations

Many of our customers choose us not only because we can meet their management needs across any device and app while providing great end-user experiences, but importantly because we also enable them to enforce a strong security posture. One thing that often gets overlooked is how much security is baked into the Omnissa platform. For the past 15 years we’ve innovated in this area, starting with seamless mobile SSO and certificate management and expanding to things including jailbreak detection, mobile phishing and content protection, script injection blocking, and session watermarking.  

In today’s environment, endpoint security and device and app management are converged. This reflects work from anywhere policies: even with many people returning to the office, we have to secure users, access, and devices in a way that doesn’t rely on perimeter-based security approaches. AI has also arrived and impacts all facets of information technology. Not only do infosec leaders have to make sure that the use of AI is secure at work, but they also have to deal with AI-generated threat proliferation, which began to take hold this year and promises to accelerate. (Note: AI also will assist with the identification and resolution of problems in the IT and security realms, so there are glimmers of hope). 

More problems, more complexity—so what do we do about it? Omnissa gets the information flowing and connects teams and technologies. This is not a new effort. Omnissa has always been a security company.

Security is fundamental to what we do, and the convergence of management and security reflects both our customers’ needs and the changing landscape of IT. Omnissa provides the best managed experience with Workspace ONE UEM while opening up our platform to support new use cases that encompass an array of device types and ownership models. Omnissa provides secure applications via Horizon virtual desktops and apps; more recently we’ve eased app deployment and management via Horizon Apps on Demand; and we’ve lessened the IT burden with 9,500+ prepackaged apps via our enterprise app repository. We proactively identify and solve problems that plague IT, such as the disconnects among security—and IT teams and technologies.

Directly integrating with security platforms allows Omnissa to speed up risk detection and response. Workspace ONE Mobile Threat Defense, which provides protection for mobile devices, is adding pre-click phishing protection. We designed Workspace ONE Mobile Threat Defense to provide web and content protection that works in tandem with secure per-app tunneling, overcoming a typical challenge. We also integrated this solution with our Hub agent to ease the first hurdle our customers see with advanced mobile security: deployment and activation.

Reducing and addressing endpoint risk

This week, we unveiled more news about Workspace ONE Vulnerability Defense, which will speed vulnerability assessment and remediation. This solution launches in limited availability this November. More than 25 years after the advent of the CVE program, vulnerability management continues to be a challenge. We see from the Verizon DBIR that it takes about 5 days for a vulnerability to be exploited (2025); we also know that it can take well over 30 days to remediate vulnerabilities (2024). The window of exploitation is too wide–we need to address vulnerabilities in hours and days, not weeks. So how do we do that? 

Workspace ONE Vulnerability Defense is designed to streamline the process for assessing risk, packaging fixes, and deploying them to devices. A vulnerability feed from CrowdStrike feeds directly into Workspace ONE UEM allowing teams to view the impact of OS and app vulnerabilities among their install base, then directly remediate those vulnerabilities. Workspace ONE eases the update process with an inventory of prepackaged apps (the 9,500+ referenced above) and phased deployment with customer experience management. Remediation starts with controlled deployment–perhaps to your IT ring, then you can evaluate the results directly in the Workspace ONE UEM console. After the first ring deployment, automations can take over the process, reporting back the results while monitoring for any issues experienced by users and devices. Ongoing visibility into end user experience—including rates of install, memory usage, and system performance problems, helps you avoid issues early on versus in the midst of mass deployment of an update. 

Additional integrations with CrowdStrike

If you are a CrowdStrike Falcon Endpoint Protection Platform customer, you can configure Workspace ONE UEM to respond to state changes within CrowdStrike Falcon. When CrowdStrike reports elevated risk, a detected threat or an incident, Falcon Foundry can trigger remediation actions such as uninstalling a per-app VPN or uninstalling corporate applications via Workspace ONE UEM. Once issues are resolved, security admins can approve returning the device to its original state automatically. If you’re already a Workspace ONE and CrowdStrike Falcon Endpoint customer, you can access the template for this on CrowdStrike Foundry app catalog.

Security signals for contextual access

Extending security signals across platforms not only helps us respond to specific device posture issues but also helps provide contextual access that supports a variety of use cases. 

Omnissa can continuously share device and user security posture, sharing that info with identity platforms such as Google BeyondCorp, Microsoft Entra, and Okta to improve risk awareness and decision making across their platforms. It is also possible to verify the posture of unmanaged and third-party devices prior to granting access to apps and resources. One such example is with Google Chrome Enterprise Device Trust, which allows organizations to address BYOD and contractor device risk by verifying device posture using Google Chrome Enterprise Trust signals from either managed Chrome browsers or managed Chrome browser profiles.

What use cases do you have for us? 

Whether you’re securing data on a CFO’s corporate mobile device, enabling a field worker with a laptop and 5G, or powering a contract worker working remotely, Omnissa can meet your IT and security needs. Our flexible platform adapts to your individual persona groups, use cases, and security requirements.

As you read here, Omnissa is continuing with our mission to deliver secure, end user-friendly work experiences. As we hike along the converged path of security and management, we appreciate your company. Stay tuned for more announcements this fall.