Jamf at RSA Conference

Last week, the Jamf team was at the Moscone Center in San Francisco to talk, collaborate and learn with leaders in the cybersecurity industry. This year's conference saw talks covering topics like application security, compliance management, threat intelligence, advanced threat detection and a lot more. At the Jamf booth, we had the opportunity to show attendees (and many customers — thanks for coming by to say hi) why securing the Apple ecosystem deserves tools designed for the Apple ecosystem.

Throughout the show, we were able to host sessions highlighting different areas of the Apple ecosystem. From compliance to vulnerability to why securing Apple is different, attendees came away with actionable insights (and a brand-new flipper for those lucky few).

Building a security compliance strategy for Mac

As Mac adoption in the enterprise grows, security and compliance teams must ensure these devices meet the same rigorous standards as other platforms. But Mac’s unique security model and evolving threat landscape require a different approach.

During this session at RSA, the Jamf team explored why Mac compliance matters, the frameworks that apply, and how Jamf makes it easier to achieve and maintain security compliance.

With Jamf's compliance benchmarks — highlighted in the sessions — organizations can proactively manage risk, streamline compliance processes and enhance security governance. We covered how to:

• Align macOS fleets with CIS security benchmarks from the macOS Security Compliance Project (mSCP)
• Automate the assessment of macOS configurations and continuously monitor for compliance
• Reduce vulnerabilities and exposure to cyber threats by enforcing strong, benchmark-driven security settings on all macOS endpoints
• Use Jamf to manage compliance across your fleet with minimal manual effort — saving time and ensuring accuracy.

At the end of the session, attendees walked away with actionable insights on how to align with industry benchmarks like CIS and NIST. Along with that, they learned that with Mac-focused compliance tools, security teams can secure and manage Mac effectively.

Mastering Apple vulnerability management

As Apple adoption grows in the enterprise, so do the security risks. Any operating system or applications will have vulnerabilities. But for organizations, what is crucial is identifying and remediating vulnerabilities before they become serious threats. During this session, the Jamf team explored how proactive vulnerability management reduces the attack surface, strengthens compliance and enhances security operations.

The Jamf speakers described how organizations can:

• Enable real-time macOS CVE tracking for vulnerable operating systems
• Integrate with and seamlessly send data to SIEMs
• Gain complete visibility that allows for rapid response for your Mac fleets

Realizing digital transformation with an Apple-first strategy

Jamf has a long history of helping organizations do more with their Apple mobile deployments. Back in 2022, American Airlines was a keynote speaker at our annual user conference — discussing how they implement Apple across their operations. And over the past few years, Jamf and Apple have continued to innovate to help organizations do more with mobile.

This session provided attendees with an overview of how Jamf helps organizations realize their digital transformation initiatives. To incorporate the workflows organizations want, MDM is not enough, especially for security-minded teams. After all, mobile devices are often the most vulnerable devices in a stack. As the speakers noted, digital transformation can be accomplished by taking a 360° view of deployments — focusing on devices, users, apps and the IT ecosystem. This, in turn, helps organizations unlock the device's purpose.

In this session, we described how customers can implement the workflows they want, which Apple's mobile devices promise.

Securing Apple is different. Why?

Apple likes to take a different approach. It's why we love Apple devices. During this session, Matt Woodruff, Lead Solutions Architect at Jamf, dived into why Apple has built their hardware and operating system different from Windows. Throughout the session, Woodruff presents the MITRE ATT&CK® matrix for macOS, the difference between the techniques and tactics used for Mac vs. Windows, and a deep dive into why organizations need to think different when it comes to securing their Apple devices.

It was not only the Jamf team giving sessions at the booth about securing Apple devices, but also our partners. Let's take a quick look at how "the power of and..." helps organizations to extend their workflows.

Amplifier Security: Amplify secure productivity for users with smarter Mac compliance

Marketplace listing >>

Amplifier helps automate OS updates, patch management and compliance enforcement while giving users control over when and how security actions happen. This session helped attendees come see what autonomous user security looks like. Jamf and Amplifier showed how Amplifier uses AI to automate end-user remediation — without tickets, nags or IT chasing people down.

Backblaze — Secure by Default: Simplifying endpoint protection and cloud storage at scale

Marketplace listing >>

The Backblaze Cloud Storage platform offers backups built for ease of use, so you can focus on safeguarding files and systems, running applications and doing more. Backblaze allows Mac and security admins to achieve their business continuity objectives for the Macs in their fleet, and the Jamf integrations mean that Backblaze's Mac-native app is easy to deploy, administer and manage. During this session, the team at Backblaze discussed how the Jamf integrations help organizations simplify while scaling cloud storage systems — and in turn, enhancing endpoint protection.

SwiftConnect: Extending the enterprise security model into physical spaces with mobile wallet access credentials

Marketplace listing >>

Organizations use SwiftConnect to power physical access credentials and permissions in real time, anywhere, in Apple Wallet. The Jamf integration allows organizations to:

• Ensure only known users have access to not only digital, but also physical work resources
• Create a best-in-class employee experience with mobile credentials for employee badges
• Use Jamf Trust device risk scores to inform pass issuance, suspension and revocation
• Leverage SwiftConnect badge tap information to drive custom workflows

During this session, the SwiftConnect team showed how security on devices is more than software, but to access the places we work.

Airlock Digital + Jamf: Take control of untrusted applications and shadow IT

Marketplace listing >>

Airlock Digital is the leading deny-by-default endpoint security tool on macOS, empowering organizations to proactively block all untrusted software not deployed through the Jamf platform. The team demonstrated how Airlock Digital’s allowlisting solution, combined with the native Jamf integration, makes implementing a deny-by-default strategy both simple and scalable. The session showed how attendees can deploy only the software you trust with Jamf — and automatically block everything else. From malware and ransomware to unapproved apps and unknown threats, Airlock Digital + Jamf keeps macOS fleets secure by default.

What's next

Whether you secure Mac, mobile devices or a mix of both, Jamf is positioned to provide tools dedicated to the Apple ecosystem. Look out for us at Jamf Nation Live happening in cities across the US, Europe and Asia this spring, or if you are attending Black Hat in Las Vegas later this year, we hope to show you what we have been working on.