Community Hub0 Subscribers
Community hub
Ivanti
View on Wikipediafrom Wikipedia
Ivanti (/ˌiːˈvɒntiː/) is an IT software company headquartered in South Jordan, Utah, United States. It produces software for IT Security, IT Service Management (ITSM), IT Asset Management (ITAM), Unified Endpoint Management (UEM), Identity Management, Patch Management and supply chain management. It was formed in January 2017 with the merger of LANDESK and HEAT Software, and later acquired Cherwell Software. The company became more widely known after security incidents related to the VPN hardware it sells.
Key Information
History
[edit]LANDESK
[edit]LAN Systems was founded in 1985 and its software products acquired by Intel in 1991 to form its LANDESK division. LANDESK introduced the desktop management category in 1993. In 2002 LANDESK Software became a standalone company with headquarters near Salt Lake City, Utah. In 2006, Avocent purchased the company for $416 million. Also in 2006, LANDESK added process management technologies to its product line and extended into the consolidated service desk market with LANDESK Service Desk. In 2010 LANDESK was acquired by private equity firm Thoma Bravo.
LANDESK bought supply chain software company Wavelink in 2012, network vulnerability assessment and patch management company Shavlik in 2013, application software company Naurtech Corporation in 2014, data visualisation company Xtraction Solutions in 2015.[1] and AppSense, a provider of secure user environment management technology, in 2016.
Lumension Security
[edit]Lumension Security, Inc was founded as High Tech Software in 1991 and headquartered in Scottsdale, Arizona[2] The company was rebranded as PatchLink Corporation in 1999. In 2006, Patrick Clawson was appointed chairman, CEO and president[3] The company then adopted the Lumension name in 2007.[4]
In 2009 Lumension acquired Securityworks,[5] and in 2012 acquired CoreTrace.[6]
Lumension products traditionally competed in the endpoint management and security industry against Sophos, McAfee, Kaspersky Lab, Symantec and Trend Micro among others.
HEAT
[edit]HEAT software was a producer of software for IT Service Management and Endpoint Management formed in 2015 by the merger of FrontRange Solutions and Lumension Security.
Ivanti
[edit]In January 2017 Clearlake Capital, owner of HEAT Software, purchased LANDESK from Thoma Bravo.[7] On January 23, 2017, LANDESK and HEAT Software merged to form Ivanti.[8][9] The combined company has 1,800 employees in 23 countries[10][11] and markets some products with references to their original names such as Wavelink supply chain software[12] and Ivanti patch product ‘powered by Shavlik’.
On April 12, 2017, Ivanti acquired Concorde Solutions, a UK based Software Asset Management company.[13] In July 2017, Ivanti acquired RES Software, a US and Netherlands based company producing automation and identity management software.[14] Later merged in 2018 into the Workspace Manager product.[15]
In September 2020, Ivanti entered into an agreement to acquire US based Unified Endpoint Management company MobileIron for $872 million[16] and San Jose, California based Pulse Secure, for undisclosed terms.[17] On December 1, 2020, Ivanti announced those acquisitions completed.[18]
On January 26, 2021, Ivanti announced the intent to acquire Cherwell Software.[19]
On August 2, 2021, Ivanti acquired RiskSense, a pioneer in risk-based vulnerability management and prioritization, to drive the next evolution of patch management.[20]
Controversies
[edit]2021 Pulse Connect Secure hack
[edit]On April 20, 2021, cybersecurity firm FireEye reported that hackers with suspected Chinese government ties exploited Pulse Secure VPN to break into government agencies, defense companies and financial institutions in Europe and the US. The report detailed how hackers repeatedly took advantage of several known and one novel flaw in Pulse Secure VPN to gain access to dozens of organizations in the defense industrial sector.[21][22] The US Department of Homeland Security confirmed the intrusions in a public advisory, urging network administrators to scan for signs of compromise. Ivanti published an emergency workaround which DHS urged network admins to install.[23] The Cybersecurity and Infrastructure Security Agency ordered federal civilian agencies to take several steps to reduce risk from the suspected breach.[24] FireEye reported that some of the intrusions using the vulnerabilities began as early as August 2020, conducted by those with suspected ties to the Chinese government. There were similarities between the hack and intrusions in 2014 and 2015 conducted by a Chinese espionage actor named APT5.[22] After further examination, CISA discovered that at least 5 federal agencies had been breached, among 24 agencies that use the Pulse Connect Secure products.[25]
Other incidents
[edit]In January 2024, Chinese government hackers were reported to have targeted Ivanti software to break into other organizations.[26]
References
[edit]- ^ "LANDESK acquires Xtraction Solutions to bring business intelligence to IT". siliconslopes.com. Retrieved 29 January 2018.
- ^ About Us. Lumension.com. Retrieved 04-04-2013.
- ^ PatchLink Adds Security Industry Veteran Patrick Clawson to Drive Next Wave of Growth. Lumension.com. 2006-08-14. Retrieved 2013-04-11.
- ^ "PatchLink born again as Lumension Security". Networkworld.com. 2007-09-11. Archived from the original on 2008-08-21. Retrieved 2013-04-02.
- ^ "Lumension buys Securityworks in deal to expand compliance software". Phoenix Business Journal. 2009-04-20. Retrieved 2013-04-04.
- ^ "Lumension buys CoreTrace to bolster security offerings". Bizjournals.com. 2012-11-05. Retrieved 2013-04-04.
- ^ "Clearlake Capital to Acquire LANDESK and Combine with Portfolio Company HEAT Software". www.ivanti.com. Retrieved 2018-01-02.
- ^ "Introducing Ivanti, LANDESK's new name for all of its products (including AppSense)". BrianMadden.com. Retrieved 2018-01-02.
- ^ "LANDESK and HEAT Software Merge to Form Ivanti". www.ivanti.com. Retrieved 2018-01-02.
- ^ "New Ivanti brand for LANDESK-HEAT union to focus on unified secure workplace message - ChannelBuzz.ca". ChannelBuzz.ca. 2017-01-23. Retrieved 2018-01-02.
- ^ "LANDesk and Heat Software Merge into Ivanti". redmondmag.com. Retrieved 29 January 2018.
- ^ "Wavelink comes under Ivanti name after merger – DC Velocity". www.dcvelocity.com. Retrieved 2018-01-02.
- ^ "Ivanti, formerly Landesk and Heat Software, buys software asset management vendor Concorde Solutions". crn.com.au. CRN. Retrieved 29 January 2018.
- ^ "Ivanti scoops up RES Software: Here's our full analysis". BrianMadden.com. Retrieved 2018-01-02.
- ^ Rolls, Jon (Aug 14, 2018). "RES Workspace and Ivanti User Workspace Manager – Merger Update". Ivanti.
- ^ "MobileIron to be Acquired by Ivanti to Secure Every Endpoint and Power the Everywhere Enterprise". Mobileiron.com. Retrieved 2020-09-28.
- ^ "Ivanti Announces Double Acquisition". Omnisperience. 29 September 2020.
- ^ "Ivanti acquires MobileIron and PulseSecure". www.ivanti.com. Retrieved 2021-03-09.
- ^ "Ivanti to Acquire Cherwell to Enable End‑to‑End Service and Asset Management". www.ivanti.com. Retrieved 2021-01-26.
- ^ "Ivanti Acquires RiskSense to Revolutionize the Patch Management Market and Help Customers Proactively Combat Cyber Threats and Ransomware Attacks". www.ivanti.com. Retrieved 2021-08-02.
- ^ "Check Your Pulse: Suspected APT Actors Leverage Authentication Bypass Techniques and Pulse Secure Zero-Day". FireEye. Retrieved 2021-04-30.
- ^ a b Brian Fung and Geneva Sands (20 April 2021). "Suspected Chinese hackers exploited Pulse Secure VPN to compromise 'dozens' of agencies and companies in US and Europe". CNN. Retrieved 2021-04-30.
- ^ "Exploitation of Pulse Connect Secure Vulnerabilities | CISA". us-cert.cisa.gov. Retrieved 2021-04-30.
- ^ "cyber.dhs.gov - Emergency Directive 21-03". cyber.dhs.gov. 16 July 2020. Retrieved 2021-04-30.
- ^ Geneva Sands and Brian Fung (29 April 2021). "Five federal agencies potentially breached in Pulse Connect Secure hack". CNN. Retrieved 2021-04-30.
- ^ Lyngaas, Sean (2024-01-10). "Suspected Chinese hackers target US research organization in latest spying spree". CNN. Retrieved 2024-01-12.
External links
[edit]Ivanti
View on Grokipediafrom Grokipedia
Company Overview
Founding and Corporate Evolution
Ivanti traces its origins to 1985, when LANSystems was established as a pioneer in IT systems management.[14] LANSystems was acquired by Intel in 1991 and operated as the LANDESK division until its spin-off as an independent company in 2002.[14] Concurrently, HEAT Software developed IT service management solutions, positioning itself as a SaaS-based provider.[15] In January 2017, private equity firm Clearlake Capital acquired LANDESK from Thoma Bravo and merged it with its portfolio company HEAT Software to create a unified entity.[16] The merger combined LANDESK's endpoint management expertise with HEAT's service management capabilities, integrating prior acquisitions such as AppSense, Shavlik, and Wavelink under a single platform.[17] On January 23, 2017, the combined organization adopted the name Ivanti, marking its formal founding as a distinct corporate entity focused on IT operations and security.[18] The corporate evolution immediately following the merger emphasized rebranding and product unification to streamline offerings across IT asset management, service desk, and security functions.[19] This transition involved consolidating multiple legacy brands into Ivanti, a process described by company leadership as a multi-month effort to align technology stacks and market positioning.[20] By mid-2017, Ivanti positioned itself as an innovation leader, leveraging over 30 years of combined experience from its predecessors to address enterprise IT challenges.[2]Headquarters and Leadership
Ivanti maintains its corporate headquarters at 10377 South Jordan Gateway, Suite 400, South Jordan, Utah 84095, United States.[1] Established as the global hub following groundwork in 2018 for the facility's completion by early 2019, the location supports core operations in IT management and security software development.[21] The company operates 18 offices across 23 nations, with significant presence in regions including Europe, Asia-Pacific, and Latin America, accommodating approximately half of its workforce outside the United States.[2] Dennis Kozak has served as Chief Executive Officer since January 1, 2025, following his promotion from Chief Operating Officer, a role he held since April 2022.[22] Prior to Ivanti, Kozak accumulated over 20 years in sales leadership and business transformation at Avaya and CA Technologies, succeeding Jeff Abbott in steering strategic direction and growth amid the company's focus on cybersecurity and IT solutions.[23] The executive leadership team comprises experienced professionals in finance, legal, marketing, revenue, and development, emphasizing operational efficiency and customer-centric innovation. Key members include Peter de Bock as Chief Financial Officer, overseeing finance and facilities with more than 30 years in software finance from firms like Inovalon and CA Technologies; Brooke Johnson as Chief Legal Counsel and SVP of HR and Security, managing compliance and human resources since 2017; Melissa Puls as Chief Marketing Officer and SVP of Customer Success and Renewals; Michael Mills as Chief Revenue Officer, directing global sales with over 25 years of experience; and Radu Patrichi as SVP and Chief Corporate Development Officer, handling mergers and acquisitions with a background at VMware and Autodesk.[22] This structure supports Ivanti's emphasis on scalable IT service management and endpoint security.[22]Core Business Model
Ivanti's core business model centers on developing and licensing enterprise software solutions that integrate IT service management, endpoint security, and asset management to automate operations, mitigate risks, and enhance productivity across hybrid environments. The company targets business customers, including large organizations with distributed workforces, by offering platforms that provide visibility into IT assets from cloud to edge devices. This approach emphasizes unification of disparate tools into a single interface, reducing manual interventions and enabling proactive issue resolution.[2][24] Revenue generation relies predominantly on software licensing and subscription fees, with models tailored to deployment types such as on-premises installations or cloud-based SaaS via the Ivanti Neurons platform. Under device-based licensing, organizations purchase licenses for each registered physical or virtual device on which the software operates, while enterprise license agreements permit usage across multiple users and devices under broader terms. Subscription licenses incorporate maintenance, updates, and upgrades, contrasting with potential perpetual licenses for legacy on-premises products. Professional services, including implementation, customization, and training, along with annual support contracts, supplement licensing income.[25][26][27] Distribution occurs through a hybrid model combining direct sales to key accounts with a partner ecosystem of over 7,000 resellers, integrators, and managed service providers, who earn commissions on sales and support deliveries. This structure supports global scalability, serving approximately 34,000 customers while leveraging partners for localized implementation and expansion into non-IT service management areas. Ivanti's emphasis on recurring revenue from subscriptions aligns with industry shifts toward cloud adoption, though dependency on robust security delivery influences customer retention amid potential churn risks.[2][28][29]History
Predecessor Companies
Ivanti traces its origins to the merger of two primary predecessor companies, LANDESK and HEAT Software, completed on January 23, 2017, under the backing of Clearlake Capital Group, which acquired LANDESK from Thoma Bravo to facilitate the combination.[17][18] This union integrated LANDESK's endpoint management expertise with HEAT Software's IT service management capabilities, forming a unified platform for IT operations and security solutions.[3] LANDESK evolved from LANSystems, established in 1985 to develop network management tools, which Intel acquired in 1991 and reorganized as its LANDESK division focused on systems management software.[14] The division operated within Intel until its spin-off as an independent entity in September 2002, subsequently growing through private equity ownership before the 2017 merger.[14] By the time of the merger, LANDESK served over 20,000 organizations with solutions for endpoint visibility, patching, and asset management.[14] HEAT Software emerged in February 2015 from the merger of FrontRange Solutions, founded in 1989 in Colorado Springs and known for its HEAT suite of IT service desk and helpdesk software, and Lumension Security, established in 1991 in Scottsdale, Arizona, specializing in endpoint protection, patch management, and vulnerability assessment.[30] Both FrontRange and Lumension had undergone prior acquisitions and rebrandings—FrontRange from earlier iterations of customer service tools, and Lumension from its roots in security software—but the 2015 combination, also driven by Clearlake Capital, created a broader service and endpoint management portfolio that complemented LANDESK's offerings in the Ivanti formation.[30]Formation and Early Mergers (2017)
Ivanti was formed on January 23, 2017, through the merger of LANDESK Software, a provider of IT systems management solutions, and HEAT Software, a SaaS-based IT service management firm, both under the backing of private equity firm Clearlake Capital Group.[17] The combination aimed to create a unified platform for IT operations, security, and service management by integrating LANDESK's endpoint management strengths with HEAT's service desk capabilities.[31] Clearlake Capital facilitated the merger by acquiring LANDESK from previous owner Thoma Bravo earlier that month and pairing it with its existing portfolio company HEAT Software, with the transaction closing in January 2017.[16] Following the formation, Ivanti pursued early expansions to bolster its software asset management offerings. On April 12, 2017, it acquired Concorde Solutions, a UK-based provider of SaaS-based software optimization and IT asset management tools, enhancing capabilities in license compliance and cost optimization for enterprise clients.[32] This acquisition marked Ivanti's ninth in five years across its predecessor entities, focusing on integrating Concorde's expertise in software license analytics.[33] In July 2017, Ivanti further expanded its portfolio by acquiring RES Software, a Dutch firm specializing in workspace automation, identity provisioning, and user environment management.[34] The deal, announced on July 5, strengthened Ivanti's user-centric IT solutions, particularly in automating desktop and application delivery for secure, efficient workspaces.[35] These initial post-formation moves positioned Ivanti as a more comprehensive IT operations provider amid growing demand for integrated security and automation tools.[3]Major Acquisitions (2018-2021)
In September 2020, Ivanti announced agreements to acquire MobileIron, a provider of mobile-centric unified endpoint management solutions, for approximately $872 million in cash, and Pulse Secure, a company specializing in secure access service edge and zero trust network access technologies.[36][6] The acquisitions, completed on December 1, 2020, aimed to enhance Ivanti's capabilities in endpoint security and automation for distributed workforces, integrating MobileIron's device management with Pulse Secure's access controls to address rising remote work demands amid the COVID-19 pandemic.[37] These moves expanded Ivanti's portfolio to cover over 40,000 endpoints across hybrid environments, combining the targets' technologies for unified visibility and threat response.[38] On January 26, 2021, Ivanti announced its intent to acquire Cherwell Software, a developer of IT service management platforms focused on service desk automation and workflow orchestration. The deal, completed later that year for an undisclosed amount, integrated Cherwell's no-code tools with Ivanti's existing asset and service management offerings, enabling customers to consolidate IT operations and reduce silos in service delivery.[39] This acquisition targeted improvements in employee experience and operational efficiency, particularly for service request handling and change management in large enterprises. In August 2021, Ivanti acquired RiskSense, a Sunnyvale-based firm specializing in risk-based vulnerability management and prioritization, for an undisclosed sum.[8] The integration of RiskSense's platform allowed Ivanti to advance its patch management by incorporating predictive risk scoring and automated remediation, helping organizations prioritize vulnerabilities based on exploit likelihood and business impact rather than sheer volume.[40] This bolstered Ivanti's security posture amid escalating ransomware threats, providing tools for proactive threat hunting and compliance in dynamic IT environments.[8]Expansion and Recent Milestones (2022-2025)
In 2022, Ivanti launched its Global Partner Portal and Campaign Central, providing partners with a personalized, role-based platform to generate leads, access training, and manage campaigns, aimed at enhancing partner enablement and business growth.[41] By May 2024, the company introduced the Ivanti One Tech Alliance Marketplace, a program connecting customers with partner solutions for integrations in IT service management, endpoint security, and automation, fostering ecosystem expansion without direct acquisitions.[42] On January 9, 2025, Ivanti appointed Dennis Kozak as CEO, succeeding Jeff Abbott; Kozak had previously overseen sales, marketing, and operations during a phase of product integration from prior acquisitions, positioning the company for continued operational scaling.[43] In March 2025, Ivanti partnered with Project Hosts to accelerate FedRAMP High authorization for its cloud services, enabling faster deployment of secure IT solutions for U.S. government agencies and supporting federal market expansion.[44] A key financial milestone occurred on May 7, 2025, when Ivanti completed a refinancing transaction infusing $350 million in new capital and extending debt maturities, providing resources for strategic initiatives in product development and security enhancements amid competitive pressures in enterprise IT.[45][46] Throughout 2025, Ivanti rolled out quarterly product releases emphasizing efficiency and risk reduction, including Q1 updates for productivity tools, Q2 features like ring deployment for patch management and Android 16 certification in endpoint management, and Q3 improvements for IT and security team workflows.[47] Product milestones included the July 24, 2025, release of Ivanti Connect Secure 22.8, advancing a "Secure by Design" approach with enhanced vulnerability mitigations and policy controls, and October enhancements across endpoint, security, and service management solutions for scalable IT environments and Windows 11 support.[48][49][50] Ivanti's innovations garnered multiple 2025 awards, such as the Stratus Award for Cloud Innovation and Cloud Computing Product of the Year for Ivanti Neurons for Patch Management, recognizing its cloud-native architecture for rapid deployment and security excellence, alongside Cybersecurity Excellence Awards in patch management categories.[51][52][53]Products and Services
Endpoint Management Solutions
Ivanti Endpoint Manager serves as the company's flagship unified endpoint management (UEM) platform, enabling IT teams to discover, inventory, configure, patch, and secure endpoints across Windows, macOS, Linux, Chrome OS, and IoT devices from a single console.[54] This solution integrates asset management, software deployment, and remote control capabilities to automate routine tasks and reduce manual intervention.[55] Core features include automated patch management to address vulnerabilities promptly, software distribution for efficient application deployment, and OS imaging for standardized device provisioning.[54] Endpoint security components provide layered defenses against zero-day threats, firewall intrusions, and unauthorized processes through device lockdown, behavioral monitoring, and location-aware policies.[56] The platform supports remote troubleshooting via integrated remote control tools, allowing administrators to resolve issues without physical access.[54] Ivanti Neurons for UEM extends these functionalities with AI-driven, continuous endpoint discovery and inventory, offering real-time visibility into managed devices including mobile platforms like iOS, Android, and Windows.[57] This SaaS-based extension facilitates policy enforcement for both corporate and BYOD scenarios, integrating threat detection to mitigate risks from mobile threats.[58] Secure UEM packages, such as Professional and Premium editions, provide tiered options for vulnerability management and compliance reporting, emphasizing proactive endpoint hardening.[59] The solution's architecture supports hybrid environments, combining on-premises deployment with cloud scalability to handle diverse device fleets, as evidenced by its compatibility with over 1,000 third-party integrations for extended functionality.[54] Recent updates, including the 2024.4 release, have enhanced automation for patching and deployment workflows to improve operational efficiency.[60] Ivanti also offers specialized remote device management through its cloud-based Ivanti Neurons for MDM, which manages and secures iOS, iPadOS, Android, macOS, ChromeOS, and Windows devices. Key features include simple over-the-air onboarding and provisioning using services like Apple Business Manager, Google Zero-Touch Enrollment, and Windows Autopilot for automated device enrollment with apps, settings, and security configurations. Support tools enhance remote capabilities: Help@Work allows IT to remotely view and control a user's iOS or Android device screen (with consent) to troubleshoot issues efficiently over any network, reducing downtime and costs. Ivanti Tunnel provides a versatile multi-OS VPN solution that authorizes specific mobile apps to access corporate resources behind the firewall without user interaction, securing traffic while preserving privacy. Ivanti emphasizes using remote control (integrated in Endpoint Manager for Windows/macOS and Help@Work for mobile) primarily for real-time troubleshooting of issues, rather than routine device management tasks like updates or configurations, which should leverage MDM automation for scalability and efficiency.Security and Exposure Management
Ivanti's exposure management offerings center on a solution that integrates attack surface management, risk-based vulnerability management, and automated remediation to identify and mitigate digital risks across hybrid environments including IT, cloud, IoT, and OT assets.[61] This approach emphasizes proactive identification of exposures such as software vulnerabilities, misconfigurations, and weak credentials through active and passive scanning methods alongside agentless monitoring, providing visibility into servers, endpoints, mobile devices, websites, and internet-facing assets.[61][62] Unlike traditional vulnerability scanning, which focuses narrowly on known flaws, exposure management adopts a holistic view by correlating asset data with exploitability and business impact to prioritize threats.[62] Risk assessment employs proprietary metrics including the Vulnerability Risk Rating (VRR) and Ivanti RS³ scores, which leverage AI-driven analysis to evaluate real-world severity beyond standard CVSS ratings, factoring in elements like active exploitation trends and organizational context.[61] Validation of prioritized exposures occurs via integrated tools for breach and attack simulation (BAS), continuous automated red teaming (CART), and penetration testing as a service (PTaaS), ensuring remediation targets verifiable threats.[61] The solution integrates with the Ivanti Neurons platform for seamless workflow automation, enabling IT teams to deploy patches, configure fixes, or isolate assets through bots and orchestration without manual intervention.[61] Complementing these capabilities, Ivanti Security Controls provides endpoint-focused security features such as automated patch deployment for detected vulnerabilities across Windows, Red Hat Linux, and CentOS systems, including agentless options to minimize disruption.[63] It supports dynamic application allowlisting, granular privilege management via just-enough administration (JIT), and real-time dashboards for compliance monitoring, directly linking CVE identifications to patch lists for rapid response.[63] These tools collectively aim to reduce mean time to remediation by aligning security operations with empirical risk data, though effectiveness depends on accurate asset inventory and timely integration.[64] As of 2025 updates, enhancements include expanded external attack surface management (EASM) for continuous monitoring of internet-exposed assets.[61]IT Service and Asset Management
Ivanti offers IT service management (ITSM) capabilities primarily through Ivanti Neurons for ITSM, a platform designed to automate workflows and enhance help desk operations across incident, problem, and change management processes.[65] This solution supports ITIL-compliant practices by enabling no-code, drag-and-drop workflow design, AI-powered chatbots for self-service resolution, and proactive issue detection to shift support from reactive to preventive.[65] It provides role-based dashboards for real-time insights, multi-channel ticket management, and mobile accessibility, available in cloud, on-premises, or hybrid deployments to suit varying organizational scales.[65] Automation reduces manual tasks, accelerating resolutions while integrating with existing phone systems for intelligent routing and post-incident feedback via bots.[65] For IT asset management (ITAM), Ivanti delivers Ivanti Neurons for ITAM, which consolidates hardware, software, virtual, and cloud asset data for full lifecycle tracking from procurement to disposal.[66] Key features include real-time automated discovery and normalization of assets, warranty and location monitoring, and compliance enforcement to mitigate risks and curb overspend through accurate inventory reconciliation.[66] The platform, hosted on an ISO 27001-certified cloud, integrates with discovery tools to map asset linkages and supports software license optimization, providing at-a-glance visibility into usage and threats.[66] Ivanti emphasizes seamless integration between its ITSM and ITAM solutions, feeding asset data into the configuration management database (CMDB) to automate service requests, incident triage, and compliance workflows.[67] This alignment enables shared visibility, such as linking asset status to service tickets, reducing redundancies and enhancing operational efficiency across IT environments.[67] For instance, ITAM insights inform ITSM processes like change approvals by verifying asset configurations, while ITSM escalations trigger ITAM updates for proactive maintenance.[68]Ivanti Neurons Platform
The Ivanti Neurons Platform is a cloud-native, AI-powered technology platform designed to enhance IT operations by providing visibility, automation, and security across endpoints, networks, and services. Announced on July 21, 2020, it functions as a hyper-automation foundation that enables proactive self-healing of devices, predictive security measures, and autonomous self-service for users, aiming to reduce operational risks and costs.[69] The platform integrates artificial intelligence, machine learning, and analytics to detect events passively and proactively, offering IT teams insights into device performance and potential vulnerabilities without requiring constant manual intervention.[4][70] Core capabilities include unified endpoint management, which supports optimization of resources by resolving issues in real-time without user disruption, and integrated vulnerability prioritization for faster remediation.[71][72] It encompasses modular solutions such as Ivanti Neurons for ITSM, which streamlines help desk functions and service management; Ivanti Neurons for MDM, handling devices across iOS, Android, macOS, Windows, and others; and extensions for application control to block unauthorized software and mitigate zero-day threats.[65][73][74] Additional features cover IT service management, zero trust access, and industrial IoT security, with recent updates in 2025.1 incorporating sentiment analysis from employee surveys to inform IT strategies.[4][75] The platform emphasizes agent and user experiences through connected workflows, leveraging data from across IT environments to automate responses and harden security postures.[24] For instance, it supports remote attestation and blocking of malware via application controls, while maintaining data security standards like AES-256 encryption for stored information.[74][76] Expansions since launch have included network security and compliance modules, such as Ivanti Neurons for PPM and GRC, released in October 2021, to address productivity and governance needs.[77] The platform supports Zero Trust Identity elements through integrations with identity providers, passwordless authentication via Ivanti Zero Sign-On (using device-as-identity and biometrics), and attribute-based access controls. These complement nZTA by incorporating real-time device health and user signals into access decisions, though Ivanti also offers separate tools like Identity Director for identity governance and administration (IGA).Ivanti Neurons for Zero Trust Access
Ivanti Neurons for Zero Trust Access (nZTA or ZTA) is a SaaS-delivered Zero Trust Network Access (ZTNA) solution within the Ivanti Neurons platform. Launched around 2021, it replaces or augments traditional VPNs with a modern zero-trust approach emphasizing "never trust, always verify." It provides secure, context-aware connectivity to applications across on-premises, cloud, and hybrid environments. Key features include:- Continuous verification of user identity, device posture, and contextual risk factors before granting access.
- Granular, conditional least-privilege access controls, dynamically enforced in real-time.
- Software-defined perimeter that hides applications ("dark cloud") to minimize attack surface and prevent lateral movement.
- Direct-to-application connections avoiding traffic hairpinning for improved performance.
- Hybrid/multi-cloud support, compatible standalone or with existing VPNs for phased adoption.
- Centralized policy orchestration, visibility into access patterns, anomalies, and analytics.