Jamf Security Cloud's endpoint and network security service (formerly Threat Defense) offers web threat prevention and mobile device protection to keep your systems safe from cyber threats. This protection includes vulnerability assessments, app scans, device behavior anomaly detection, and network-based security protections.

Activated via the Network security service capability, policies include:
  • Threat prevention policy
  • Custom threat intelligence
  • App watchlist and app blocking

You can also integrate endpoint and network security capabilities with your organization's existing security solutions using these methods:

  • Secure unified endpoint management (UEM) tagging to create a UEM service conditional access policy based on Jamf's security policy.

    For more information, see Configuring Signal UEM Using Jamf Security Cloud.

  • You can stream detected threat events and network event logs to your preferred cloud or on-premise services.

    For more information, see Data Streams for Jamf Security Cloud.

  • Risk API can be used to programmatically obtain device risk assessments via a RESTful interface.

    For more information, see Risk API.

  • There is also a Postman API collection for the Risk API that can be used to interact with all active endpoints.

    For more information, see jamf / RADAR_API_Postman_Collection (GitHub).