How Devicie leveraged Microsoft’s Intune to reinvent end user device security
by Marty McGregor, CEO and Co-founder, Devicie
Agentless endpoint solutions are the modern upgrade to agent-based alternatives that can help protect an organisation at the end user device barrier
There’s a big misconception we come up against when it comes to how people view Devicie and Microsoft Intune. People think we’re competing with Intune when, in reality, we have a synergistic relationship. Intune is the foundation on which Devicie is built and Intune allows us to deliver a mix of security and productivity in a way that has not been possible before.
While Intune is a fantastic foundation – a cloud-based service focused on mobile application management and mobile device management – it isn’t an out-of-the-box solution. Intune is an enabling technology, where the value is gained after extensive customisation, requiring highly qualified people to make it work for an organisation. This is where Devicie comes in.
Agent vs agentless
The problem with using an agent for remote onboarding, management and monitoring is you first need to get the agent onto the device. Installing an agent on every device on a corporate network is an expensive and difficult-to-manage process, that lacks both the flexibility and scalability required by modern organisations.
Tracking which devices have agents and which don’t creates security holes. Thankfully, agentless end-user management solutions are more secure and easier to manage. Agentless is a modern endpoint solution, championing a better end-user experience that is both flexible and scalable.
Cloud-based solutions are the way forward for virtualisation and bring-your-own-device policies, which is where agentless fits in. That said, cloud services have to be implemented correctly to avoid becoming a statistic like the 30 per cent of organisations in IBM Security’s Cyber Resilient Organization Report 2020 that reported inhibited cyber resilience because of poorly configured cloud services.
With Devicie, endpoint devices can become a secure barrier for organisations, rather than the most vulnerable and likely to be cyberattacked.
Devicie waited for Intune
We had our eye on Microsoft Intune from its infancy. For years we had been looking for ways to fully secure and manage end-user devices over the internet. We knew Intune was the best candidate due to its native support within the solution, ahead of third party solutions requiring agents. Once Intune matured to allow for deployable applications, we knew we’d found our agentless foundation for Devicie. Being able to fully manage an end-user device online, without having to perform an in-person deployment, was a game changer.
Think of Intune as the engine and Devicie as the chassis, wheels, seats as well as the other protective, comfortable and time-saving parts of a car. Intune is the powerful engine on which Devicie is built to deliver an organisation’s security, data and productivity tools.
Intune is the right foundational platform because it lets Devicie have native, remote and agentless management of employee devices, regardless of where that device is in the world. Devicie uses Intune to automate security access, manage corporate apps and protect data across end user devices.
An outstanding security combo
Microsoft ensures Intune is secure and highly compliant and Devicie secures the end user side of the equation. Still, the security of end user devices is really about the security of an organisation’s most vulnerable area, which requires security patches to be applied if they’re going to be effective.
Externally, the concept of applying a security update may seem simple, but at an organisational level, assessing and deploying security updates across a fleet of devices is logistically challenging. The challenge increases without up-to-date management tools that show which devices are patched and which ones aren’t.
Devicie has dashboard monitoring tools that make finding and rectifying potential problems a lot faster. Spotting vulnerabilities that may have been patched months or even years ago is a lot easier, while keeping a fleet of devices up to date is a virtual and painless process. For peace of mind, Devicie applies patches in a 30-day period, in line with best practices, and a positive user experience. However, our solution can accommodate any security model required by any organisation. Devicie’s mature security and compliance posture will effectively map to any compliance requirements. The baseline security frameworks implemented by Device include the Centre for Internet Security (CIS) Benchmarks, the Australian Signals Directorate Essential Eight, PCI DSS and ISO27001.
The Devicie difference
Once you have Intune, the only other requirements are power and an internet connection, to tap into an enterprise-level end user device security management solution.
From system setup, Devicie has full management of every enrolled device via Intune, without the need to install any agents. This gives your organisation 100 per cent visibility of devices and management of them, effectively eliminating any black spots.
Devicie is compatible with Windows 10, macOS, iOS and Android devices via Intune, creating a single management console and reporting view for all devices across an organisation, regardless of the operating system.
Intune offers greater control and better visibility over compliance concerns and security issues, simultaneously making it both easier and faster to mitigate threats whenever they come up. The IT effort is radically removed and there are no blind spots on unmanaged machines.
Users are no longer required to configure or manage their own devices, with Devicie doing this automatically, optimally and in the same way for every person, with minimal need for IT resources. This includes all provisioning, packaging and on-going patching of end user devices, operating systems and applications, plus the configuration of settings.
Ultimately, while Devicie and Intune work in tandem, Devicie enables organisations to maximise the value of Intune and adds a whole suite of automated functionality that delivers an exceptional end user device security and management experience.
If you would like to chat to us about how we can help you set up uncompromising security management across your device fleet, with a fantastic end user experience, we’d love to hear from you.
If you would like to learn more about how Devicie and Intune work together, read our new Insight Paper.