Intrinsic Security


Protect Your Apps and Data with Intrinsic Security

Intrinsic security is a fundamentally different approach to securing your business. Pivot to a strategy that leverages your infrastructure and control points in new ways across any app, any cloud, and any device, combined with threat intelligence, so that you can shift from a reactive posture to a position of strength.

Intrinsic security also helps meet your Zero Trust goals. Download the Zero Trust Spotlight whitepaper, a commissioned study conducted by Forrester Consulting on behalf of VMware, to learn how you can improve the effectiveness of Zero Trust projects simply by implementing technical and organizational measures using intrinsic security solutions.


SolarWinds Breach Insights

Intrinsic Security 101

A New Security Approach


Intrinsic security is a fundamentally different approach to securing your business. It is not a product, or tool, or bundle for your organization. Rather, it is a strategy for leveraging your infrastructure and control points in new ways—in real time—across any app, cloud, or device so that you can shift from a reactive security posture to a position of strength.


It is about using what you have in new ways, so you can help unify your security and IT teams, accelerating how they identify risk, prevent, detect, and respond to threats with the right context and insights.


At its core, intrinsic security is built-in, unified, and context-centric.

Download Brochure


Security Needs to be Built-in, not Bolted-on

Rather than relying on a standalone product for each capability, intrinsic security maximizes controls directly built-in to the infrastructure. By leveraging the virtual layer, you can use your existing infrastructure in new ways to protect your endpoints and workloads, networks, workspaces, and clouds, while gaining greater visibility and control over policies that protect your business.

Unified, not Siloed

Security teams frequently work in silos away from IT and operations teams, making it harder to get a holistic, clear security picture. An intrinsic security approach brings tools and teams together by enabling your security professionals to use data and events from IT and operations to more effectively control threats and policies. This unified approach leverages cloud, application, and device infrastructure to provide richer insights about the security environment.

By unifying your teams and technology, you can collaborate more effectively and increase agility when it comes to responding to new vulnerabilities and threats.


Context-centric, not Threat-centric

Intrinsic security should provide you with rich context not just about threats, but about what you are protecting—your endpoints and workloads, networks, workspaces, and clouds.

Context-centric security means you know behaviors and intended actions, including applications, data, users, access points, and configurations. It equips you with powerful knowledge that, combined with the latest threat intelligence, enables you to act faster to prevent and respond to new threats.

Points of Vulnerability to Points of Control

The strategy behind intrinsic security is building security into your infrastructure to turn points of vulnerability into points of security control. This enables you get insights across any app, any cloud, and any device to simplify and strengthen your approach to security and keep emerging threats at bay.

The control points that are critical to the intrinsic security strategy are networks, workloads, endpoints, identity, and clouds.


Transform Your Enterprise Security Solutions 

Segment Networks and Inspect Traffic

Virtualize your network security stack and gain protection that's intrinsic to your infrastructure. Mitigate risk, ensure compliance, and lower costs while vastly simplifying the operational model of firewalls, IDS/IPS, and network access in your data centers and clouds.

Rethink Your Firewall Strategy

More Network Security Solutions

Segment networks
Consolidate endpoint

Consolidate Endpoint and Workload Protections

Consolidate multiple security capabilities including next-gen antivirus, endpoint detection and response (EDR), and cloud workload protection. Utilizing platform modules, you can identify risk, prevent, detect and respond to the latest and most complex attacks while hunting for abnormal activities using threat intelligence.

Endpoint Security Whitepaper
More Endpoint and Workload Security Solutions

Protect Your Digital Workspace

Deliver predictive and automated security for users, apps and endpoints across your digital workspace with a modern, cloud-native enterprise security platform.

VMware Named a Leader 3rd Consecutive Year
More Workspace Security Solutions

Protect your digital workspace
Mitigate public security risks

Mitigate Public Cloud Security Risks

Get real-time insight into cloud resources, misconfigurations, threats, and change activity. Graphically visualize resource relationships and investigate issues. Prioritize findings based on risk, automatically remediate issues, and collaborate with developers.

Read Solution Brief
More Cloud Security Solutions

VMware Products for Intrinsic Security

Carbon Black Cloud

Transform your security with cloud native endpoint protection that adapts to your needs.

NSX Service-defined Firewall

Rely on a distributed, scale-out internal firewall that is built on NSX, to secure east-west traffic across multi-cloud environments.

Workspace ONE

Securely deliver and manage any app on any device with VMware Workspace ONE, an intelligence-driven digital workspace platform.

VMware Secure State

Reduce risk and protect millions of cloud resources by remediating security violations and scaling best practices at cloud speed.

Frequently asked Questions About VMware Intrinsic Security

Is intrinsic security a VMware product?

No, intrinsic security is not a product, or tool, or bundle with a SKU. It is a fundamentally different approach to securing your business. It’s a strategy for leveraging your infrastructure and control points in new ways—in real time—across any app, cloud, or device so that you can shift from a reactive security posture to a position of strength. 

What are the advantages of an intrinsic security approach?

At its core, intrinsic security has three main attributes. First, it’s built-in, with security capabilities baked into the control points in your infrastructure. Second, it’s an approach that unifies tools and teams to work better together and solve security problems. And third, it leverages control points to get insights into application and IT context as well as threats. These three areas help organizations shift from a reactive posture to a position of strength.

How does intrinsic security reduce my risk profile?

Intrinsic security helps organization reduce their risk through three key attributes. Built-in security means fewer products, agents, and complexity, reducing the chance for misconfiguration and vulnerabilities. Unifying tools and teams across security, IT, and operations improves holistic visibility to identify threats. Leveraging the infrastructure for real-time context and control points means we help organizations better detect and respond to threats.

What are the biggest problems that intrinsic security helps me solve?

Intrinsic security uses technology across the network, endpoint, workload, workspace and cloud to solve the most difficult cybersecurity problems in the enterprise. With this approach, organizations can secure their applications, users, and clouds from existing and emerging threats, identify and mitigate risks, meet regulatory compliance requirements, and do so with less complexity across their security portfolio.

What products are part of VMware’s strategy for Intrinsic Security?

VMware’s strategy is embedding security in everything we do, so nearly every product in the portfolio has security capabilities built-in. That said, the primary security products areas for focus are Carbon Black Cloud for endpoint and workload security, NSX and VeloCloud for network security, Workspace ONE for workspace security, and VMware Secure State for public cloud security.

Access VMware Security Advisories 

VMware maintains various programs and practices to ensure that security is standardized through all facets of our products and cloud services. To see a list of reported vulnerabilities, or sign up to receive advisories via email, visit the VMware Security Advisories page.