How do you allow Macbooks in your environment? Our Marketing team requires them for the nature of their work, but IT has been reticent. I suggested leaving Macbooks off network entirely, but we still need efficient file share option and/or VPN access. What solutions have you employed?

1.9k views1 Upvote8 Comments

Director of IT in Government, 10,001+ employees
We do, about 5% of our 100,000 users are on MacBooks.
1 2 Replies
AVP of Marketing in Insurance (except health), 1,001 - 5,000 employees

How did you mitigate any infosec concerns? 

Director of IT in Government, 10,001+ employees

A blend of security tools and network isolations. Multiple networks, the least secure has browsing, but application access is through MFA either Microsoft or Okta with a card. Microsoft or Okta mfa depending on sought resources.

The Mac experience does not have parity to the windows experience, but supports necessary missions of the work.

Senior Director, Technology Solutions and Analytics in Telecommunication, 51 - 200 employees
We have several Macs among our fleet of laptops as well. I'd recommend you look into a Mac MDM that works within your Microsoft Ecosystem. If you have Microsft Intune there is a MacOS client, there is also Jamf but I haven't used that in years. 
Sr. Director of IT in Retail, 10,001+ employees
We have a large percentage of users in the US on MacBooks esp. for online, marketing, and others including myself.  We use Jamf to manage, CISCO Anyconnect, and Intune.  It works quite nicely for me and I'm on the Apple M1 Max chip.
Principle Consultant in IT Services, Self-employed
We allow resources to pick the device that helps them do their job. Many of our sales personal and engineers use Macbooks. We have added several tools to help secure the environment, like Intune, Crowdstrike, and Manage Engine.
Senior IT Manager in Government, 10,001+ employees
Properly configured and administered, the Mac OS can be as secure, if not more secure, than the Windows Platform. We offer our user community a choice of either Mac or Windows as their primary device - finding it best to let people use the tool that works best of them. Properly configured and administered, the Mac OS can be as secure, if not more secure, than the Windows Platform. Through Apple Business Manager, our Mac laptops are all firmware tied to our organizational ID, so they will look to our JAMF instance to reimage remotely even if they're stolen and wiped clean. We use JAMF to manage our MacBook fleet and Maas360 to manage our Windows machines. 
CISO in Insurance (except health), 5,001 - 10,000 employees
Most security platforms with clients have MAC OS compatibility like Okta, Zscaler, Crowdstrike, Etc. Using modern security platforms and the Mac OS can be secure and play well with others. Typically when I see this type of policy it is because the IT Teams do not have the Mac skill set. 

Content you might like

Exclusively via organization-managed desktops, laptops, and mobile devices (phones and tablets)40%

Via a hybrid of organization-managed AND employee owned desktops, laptops, and mobile devices (phones and tablets)50%

Exclusively via employee owned desktops, laptops, and mobile devices (phones and tablets)6%



1.7k views2 Upvotes

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
42.2k views131 Upvotes319 Comments