SOFTWARE ASSET MANAGEMENT

SOFTWARE ASSET MANAGEMENT

14

_{April 2016}

Alan Giles

BCS SAM/InfoSec Event, Manchester

AGENDA

•

_Introduction

•

_{Software Asset Management evolves – driven by users}

•

_{Not all mobile deployments are equal}

• Application provision

• Containerisation

•

_{The 3 steps to Mobile SAM}

•

_Conclusions

WHY NOW IS THE RIGHT TIME TO ACT

“68% of organisations can expect an

audit from at least one software vendor

in the next 12 months”

END USERS ARE CHANGING SAM REQUIREMENTS

•

Software is increasingly being consumed whilst mobile.

•

With or without the organisation’s permission, today’s IT consumers

are used to accessing data and software anytime from anywhere.

•

To enable organisations to manage the many implications of this

change in behaviour, ‘Mobile SAM’ is becoming an increasingly

important area.

•

Organisations are now required to manage software and licenses

across all devices, desktops/laptops and major mobile platforms: iOS,

Windows Phone and Android.

SOFTWARE SELF-SERVICE INCREASING

• Around two thirds of users introduce risk

by installing mobile apps that are not provided by IT.

• This behaviour removes the ability to

control licensing and compliance on mobile devices.

• Users will fill the ‘app gap’, the delta between what you provide and what

they want to use, if left unchecked.

HOW DO YOU DOWNLOAD/ ACCESS THE APPLICATIONS YOU NEED FOR WORK?

• 71% of respondents say that their organisation allows employee-owned devices to connect to their company’s network

• 96% of respondents allow employees to access company email using their personal

device

• 26% of apps access private information such as email and contacts, with only 2% of

apps being from highly trusted publishers

• ‘Free’ apps in an environment can be risky, particularly if they are over permissive

• Consideration should be given to which apps are appropriate for connection to ‘behind

the firewall’ corporate assets.

FURTHER RELIANCE ON APPS INTRODUCES RISK

CONTAINERISATION – IS IT REQUIRED OR NOT?

•

_{Things to consider:}

• Fully managed devices/COPE/BYOD or a mix of all of these?

• Full containerisation/‘managed’ apps/native experience or a choice based on user

profile?

• Do you require visibility of all apps on a device – the answer is almost always ‘Yes’

•

_{End-user experience determines success of a containerised solution,}

deploy only where needed or appropriate

•

_{Ensure your vendor can offer flexible security, matching risk profiles to}

MOBILE SAM

•

_{As mobile devices overtake PCs as the most-often used means of}

connecting to company data and apps, an organisations’ Software

Asset Management (SAM) program needs to evolve to manage these

devices and ensure that they are delivering value without introducing

new risks

•

_{The inventory and management of these mobile devices is a SAM}

issue, not isolated to the Network Security team

MOBILE SAM – GAIN VISIBILITY AND CONTROL

SAM and EMM, a natural market progression

INVENTORY

• Create an inventory of connected smartphones and tablets • Understand who is connecting to

corporate assets, and how

LICENSE MANAGEMENT

• Cross-check licensing across mobile, enterprise and desktop to ensure compliance

• Derive full value from entitlement rights.

DEVICE MANAGEMENT

• Take full control over mobile devices, including in-field deployment and resets, updates etc. • Maintain security of all enterprise data and

MOBILE DEVICE INVENTORY

•

_{Mobile Device Inventory – the crucial first step in enterprise mobile}

management, creating a comprehensive view of the mobile devices in

your network

•

_{The information gathered includes all of the hardware and software}

attributes of the mobile device, including ownership

•

_{Visibility of all applications residing on the device is required to ensure}

MOBILE SAM – ONE PANE OF GLASS

SLM SDM

Use Snow Device Manager to populate mobile information within Snow License Manager, always showing live data

MOBILE SAM – LEVERAGE EXISTING INVESTMENTS

EMM SOLUTIONS

Use your existing EMM solution to export mobile device information

MOBILE SOFTWARE LICENSE MANAGEMENT

• Once the mobile inventory has been completed, the next step would be to

begin integrating software license management capabilities into the picture. • _{Mobile devices are associated with people and have applications deployed on}

them. Software licenses are associated with an application and these devices and their software entitlements are managed for efficiency and compliance

• As an example, an Office 365 user would generally be entitled to access

Microsoft’s office applications on their PC, a number of mobile device and on the cloud under one user license. A SAM solution that has an integrated

EMM capability can be used to understand these interconnections and ensure both compliance and cost optimisation is achieved.

MOBILE SOFTWARE LICENSE MANAGEMENT

• _{Indirect usage is a challenge that will only grow as organisations become} increasingly reliant on mobile devices accessing backend systems. Staff

accessing customer, manufacturing, supply-chain, logistics or finance data supplied by SAP and other datacenter software vendors need to be

monitored, managed and ultimately paid-for

• The ability to react when blacklisted apps appear on your estate is highly desirable

• _{Understanding when an app becomes licensable is essential to ensure that an}

MOBILE DEVICE MANAGEMENT

• Once the inventory and license optimisation challenges have been addressed,

organisations can then consider full enterprise device management as a way to complete the circle in terms of managing the full lifecycle of mobile devices

• _{The need for mobile device management is strong not only because of the access that}

these devices have to sensitive information but because of user attitudes to them and the data and apps they hold

• Although an increasing number of devices are issued by the organisation to

employees for work purposes, there is still a strong sense among users that a mobile is a personal device and thus is often used for personal purposes.

MOBILE DEVICE MANAGEMENT

• With mobile device management, the solution can be used to help manage many capabilities and uses of the device remotely:

• For example, if a user forgets/changes their email password, the device can have the email

settings reset remotely.

• Another example might be a situation where a user loses their mobile device. A remote

“wipe” of the phone can be carried out through the enterprise mobility solution so that no company data is exposed.

• _{Device management is only one part of an overall Enterprise Mobility}

Management solution, alongside application and content management, both essential pieces of the device lifecycle management process, ensuring the

right apps are on the right device and that corporate data is accessed by

MOBILE SAM GIVES CONTROL AND SAVES YOU MONEY

•

_{Pay for what you use}

•

_{Become compliant and avoid audit fines}

•

_{Re-harvest software in license pools using VPP programs}

from Apple, Google, Microsoft

•

_{Avoid illegal application usage}

•

_{Spread costs within the organisation}

•

_{Manage all apps – clear visibility into apps and usage}

CONCLUSIONS

• Software Asset Management works best by identifying key priorities and

breaking down a long-term plan to a series of milestones or accomplishments

• The same holds true for managing mobile devices. The journey to full mobile device management is best started with a basic baseline inventory of devices,

users and applications. From there, analysing the licensing and compliance

becomes the focus to assure the true-up vulnerability is managed/mitigated

• Once mobile license compliance is understood, being able to fully manage the device - from automated software management through to the entire wiping of a lost mobile device - will layer into the repertoire of capabilities.

• Ultimately, it all begins by understanding what mobile devices are connected and can access data under the control of your company.

USER-CENTRIC SAM FROM MOBILE TO DATACENTER

PUBLISH CONTROL REPORT

REQUEST APPROVE ACCESS

SAM MANAGER

Cloud & Virtual

Desktop & Datacenter SAM for Apps

SAM PLATFORM

With millions of licenses sold, Snow License Manager is the world’s leading SAM solution

Cut the costs of managing complex Oracle licenses The true multi-platform audit

solution designed to find devices, audit software installs & track usage

Integrate Snow’s SAM platform with existing Inventory, ITAM & Service Management solutions

Manage SAP licensing to optimize one of the enterprise’s largest software costs

An enterprise mobility management solution that handles the full lifecycle of tablets and phones

Identify & manage virtual assets across the network

User-centric software request portal with integrated dynamic and proactive Software Asset Management

Recognize commercially-licensable applications across the network

SNOW SOFTWARE