A protection profile for every situation
beem Security Editions
Choose the Security Edition that offers the scope of protection you need for your company. The Essential Security Edition provides the basics – secure surfing in beemNet for all users and company sites – while the more advanced Security Editions Basic, Plus and Premium give you a more comprehensive range of security features.
Always protected in the Swisscom network
Automatic, network-based protection against cyberattacks and increased privacy for all connected devices in the mobile phone network and at company sites with a Swisscom broadband connection.
beem app for protection in third-party networks and advanced security features
The beem app offers users protection in third-party networks and unsecured networks (e.g. public WLANs), as well as encryption of all connections, advanced security features, device-specific push notifications in the event of a cyber incident and a personal Security Dashboard.
Increased privacy thanks to targeted anonymisation
The encryption of data traffic, anonymisation of devices (IP cloaking) and other measures increase the privacy of employees and reduce the risk of social engineering and targeted attacks on devices.
Protection against online cyberattacks
Blocking of malicious online attempts to access connected networks and devices (next-generation firewall, intrusion detection & prevention system, IP cloaking, application obfuscation, zero-day prevention, etc.).
Up-to-date protection against harmful websites and malware
Protection against harmful websites, phishing links, malicious file attachments, viruses and other malware (unified threat management – UTM, secure web gateway – SWG) using deep packet inspection (DPI), even with encrypted connections (e.g. HTTPS). Swisscom security experts make adjustments to the security settings multiple times a day based on the current threat situation.
Push notifications and Security Dashboards create transparency for everyone
Users receive device-specific push notifications as well as a personal Security Dashboard in the beem app informing them of previously blocked content and averted cyber incidents. A Security Dashboard for administrators provides aggregated and anonymised data at company level.
Zero Trust access minimises susceptibility to attack using granular controls
Finely tuned setting options for protected access, based on place, time, device characteristics, network or data confidentiality, for example. The underlying Zero Trust network access (ZTNA) allows users to access business applications securely from anywhere – therefore making remote access service (RAS) and VPN solutions obsolete.
Zero Trust access for private business applications
Private business applications and company data can be protected by means of a Zero Trust access approach. Business applications can be installed on local servers in the corporate network or in the cloud. The optional beem Application Discovery will assist with the setup of Zero Trust access.
Zero Trust access for Software as a Service (SaaS)
Access to the SaaS applications you have selected can be protected and precisely controlled using Zero Trust access principles. An inline cloud access security broker (CASB) can implement Zero Trust access inside and outside beemNet using a reverse or forward proxy for client devices – as per your choice.
Connect and protect local (web) servers
Anonymous users from the Internet can access local (web) servers at sites with a Swisscom Centro Business router by using fixed IP addresses or dynamic DNS (DynDNS). Security guidelines can be established for each fixed IP address or public domain name (FQDN). This means that a local firewall is no longer necessary.
Passwordless authentication and comprehensive identity management
Company-wide identity and access management and passwordless authentication based on phishing-resistant passkeys. Combined with beem device management to ensure maximum security for passkeys. Single sign-on (SSO) authentication can be enabled as an alternative by means of a federated identity service (e.g. Microsoft Entra ID).
Device management and security requirements for client devices
Comprehensive management functions for client devices running Windows, macOS, iPadOS, iOS and Android. It is possible to block devices remotely or to delete company data stored on them. Choose from predefined device security profiles that are continuously updated by Swisscom security experts (unified endpoint management).
Comprehensive analysis options to enable sound decision-making
beem Analytics provides an insight into comprehensive network and security data. This enables real-time detection of threats, optimisation of network performance, prevention of shadow IT and sound decision-making. AI-based analytics (UEBA) and a connection to Swisscom Threat Detection & Response (TDR) are offered as options.
Company-wide security guidelines and self-service
All company-wide security guidelines can be managed once, centrally, for all of beemNet and all connected devices, users, access rights, networks and sites. In addition, users can be prompted to complete activities (e.g. client device onboarding), which they can subsequently do by themselves.
Always protected in the Swisscom network
Automatic, network-based protection against cyberattacks and increased privacy for all connected devices in the mobile phone network and at company sites with a Swisscom broadband connection.
beem app for protection in third-party networks and advanced security features
The beem app offers users protection in third-party networks and unsecured networks (e.g. public WLANs), as well as encryption of all connections, advanced security features, device-specific push notifications in the event of a cyber incident and a personal Security Dashboard.
Increased privacy thanks to targeted anonymisation
The encryption of data traffic, anonymisation of devices (IP cloaking) and other measures increase the privacy of employees and reduce the risk of social engineering and targeted attacks on devices.
Protection against online cyberattacks
Blocking of malicious online attempts to access connected networks and devices (next-generation firewall, intrusion detection & prevention system, IP cloaking, application obfuscation, zero-day prevention, etc.).
Up-to-date protection against harmful websites and malware
Protection against harmful websites, phishing links, malicious file attachments, viruses and other malware (unified threat management – UTM, secure web gateway – SWG) using deep packet inspection (DPI), even with encrypted connections (e.g. HTTPS). Swisscom security experts make adjustments to the security settings multiple times a day based on the current threat situation.
Push notifications and Security Dashboards create transparency for everyone
Users receive device-specific push notifications as well as a personal Security Dashboard in the beem app informing them of previously blocked content and averted cyber incidents. A Security Dashboard for administrators provides aggregated and anonymised data at company level.
Zero Trust access via Internet browser
For unknown client devices inside and outside beemNet, the browser-based beem Business Application Portal offers Zero Trust access to private business applications (web or remote desktop).
More than an SASE solution: Swisscom Enterprise Connect combined with beem
Swisscom Enterprise Connect, with its extensive software-defined networking (SDN) features, IP-Plus®, SD-LAN and SD-WAN, can be combined seamlessly with beem. The combination gives customers a tailored networking and security solution that exceeds the functional scope of a secure access service edge (SASE) solution.
Connect and protect (web) servers in the corporate network
In a network based on Swisscom Enterprise Connect with Central Internet, with or without IP-Plus® and assigned fixed IP addresses, beemNet replaces the Internet. Security guidelines can be established for each fixed IP address or public domain name (FQDN). This means that the (web) servers requiring protection no longer need firewalls.
Security and optimum latency for inbound and outbound Internet traffic
beem can be combined with Swisscom Local Internet IP-Plus® to offer comprehensive security and technically optimal latency for access to and from the Internet (ingress and egress). The centrally defined beem security guidelines are implemented using hardware (uCPE) on site. A local firewall is therefore no longer necessary.
Secure access to unsecured websites and web applications
Remote browser isolation (RBI) offers comprehensive protection against web-based threats by outsourcing browser activities to an isolated virtual environment in beemNet. This protects client devices, prevents unwanted data loss and allows secure remote access to legacy web applications.
Comprehensive protection (Security Service Edge) for IoT
beem can automatically identify Internet of Things (IoT) devices and create an inventory, which is then continuously updated. Administrators can group the IoT devices and define and assign individual security guidelines covering the full functionality of beem Security Service Edge.
Customised, individual security policies
Administrators can configure customised, company-wide security policies from a central point; for instance for Zero Trust access, data loss prevention (DLP), advanced threat protection (ATP), unified threat management (UTM) or domain name system (DNS).
Zero Trust access minimises susceptibility to attack using granular controls
Finely tuned setting options for protected access, based on place, time, device characteristics, network or data confidentiality, for example. The underlying Zero Trust network access (ZTNA) allows users to access business applications securely from anywhere – therefore making remote access service (RAS) and VPN solutions obsolete.
Zero Trust access for private business applications
Private business applications and company data can be protected by means of a Zero Trust access approach. Business applications can be installed on local servers in the corporate network or in the cloud. The optional beem Application Discovery will assist with the setup of Zero Trust access.
Zero Trust access for Software as a Service (SaaS)
Access to the SaaS applications you have selected can be protected and precisely controlled using Zero Trust access principles. An inline cloud access security broker (CASB) can implement Zero Trust access inside and outside beemNet using a reverse or forward proxy for client devices – as per your choice.
Connect and protect local (web) servers
Anonymous users from the Internet can access local (web) servers at sites with a Swisscom Centro Business router by using fixed IP addresses or dynamic DNS (DynDNS). Security guidelines can be established for each fixed IP address or public domain name (FQDN). This means that a local firewall is no longer necessary.
Passwordless authentication and comprehensive identity management
Company-wide identity and access management and passwordless authentication based on phishing-resistant passkeys. Combined with beem device management to ensure maximum security for passkeys. Single sign-on (SSO) authentication can be enabled as an alternative by means of a federated identity service (e.g. Microsoft Entra ID).
Device management and security requirements for client devices
Comprehensive management functions for client devices running Windows, macOS, iPadOS, iOS and Android. It is possible to block devices remotely or to delete company data stored on them. Choose from predefined device security profiles that are continuously updated by Swisscom security experts (unified endpoint management).
Comprehensive analysis options to enable sound decision-making
beem Analytics provides an insight into comprehensive network and security data. This enables real-time detection of threats, optimisation of network performance, prevention of shadow IT and sound decision-making. AI-based analytics (UEBA) and a connection to Swisscom Threat Detection & Response (TDR) are offered as options.
Company-wide security guidelines and self-service
All company-wide security guidelines can be managed once, centrally, for all of beemNet and all connected devices, users, access rights, networks and sites. In addition, users can be prompted to complete activities (e.g. client device onboarding), which they can subsequently do by themselves.
Always protected in the Swisscom network
Automatic, network-based protection against cyberattacks and increased privacy for all connected devices in the mobile phone network and at company sites with a Swisscom broadband connection.
beem app for protection in third-party networks and advanced security features
The beem app offers users protection in third-party networks and unsecured networks (e.g. public WLANs), as well as encryption of all connections, advanced security features, device-specific push notifications in the event of a cyber incident and a personal Security Dashboard.
Increased privacy thanks to targeted anonymisation
The encryption of data traffic, anonymisation of devices (IP cloaking) and other measures increase the privacy of employees and reduce the risk of social engineering and targeted attacks on devices.
Protection against online cyberattacks
Blocking of malicious online attempts to access connected networks and devices (next-generation firewall, intrusion detection & prevention system, IP cloaking, application obfuscation, zero-day prevention, etc.).
Up-to-date protection against harmful websites and malware
Protection against harmful websites, phishing links, malicious file attachments, viruses and other malware (unified threat management – UTM, secure web gateway – SWG) using deep packet inspection (DPI), even with encrypted connections (e.g. HTTPS). Swisscom security experts make adjustments to the security settings multiple times a day based on the current threat situation.
Push notifications and Security Dashboards create transparency for everyone
Users receive device-specific push notifications as well as a personal Security Dashboard in the beem app informing them of previously blocked content and averted cyber incidents. A Security Dashboard for administrators provides aggregated and anonymised data at company level.
Information security for confidential and entrusted data
Detect and prevent unauthorised sharing of sensitive data using data loss prevention (DLP) with automatic encryption, quarantine, redaction and tokenisation. Implementation uses an API-based data protection CASB for data stored in the cloud and via SWG and the like during data transmission.
AI-based detection of and defence against complex cyberattacks
Advanced threat protection (ATP) offers comprehensive protection against the latest cyberthreats such as zero-day attacks and phishing. It combines AI-driven threat analysis, multi-sandbox technologies and a multi-layer security strategy aimed at detecting and neutralising threats in real time.
Zero Trust access via Internet browser
For unknown client devices inside and outside beemNet, the browser-based beem Business Application Portal offers Zero Trust access to private business applications (web or remote desktop).
More than an SASE solution: Swisscom Enterprise Connect combined with beem
Swisscom Enterprise Connect, with its extensive software-defined networking (SDN) features, IP-Plus®, SD-LAN and SD-WAN, can be combined seamlessly with beem. The combination gives customers a tailored networking and security solution that exceeds the functional scope of a secure access service edge (SASE) solution.
Connect and protect (web) servers in the corporate network
In a network based on Swisscom Enterprise Connect with Central Internet, with or without IP-Plus® and assigned fixed IP addresses, beemNet replaces the Internet. Security guidelines can be established for each fixed IP address or public domain name (FQDN). This means that the (web) servers requiring protection no longer need firewalls.
Security and optimum latency for inbound and outbound Internet traffic
beem can be combined with Swisscom Local Internet IP-Plus® to offer comprehensive security and technically optimal latency for access to and from the Internet (ingress and egress). The centrally defined beem security guidelines are implemented using hardware (uCPE) on site. A local firewall is therefore no longer necessary.
Secure access to unsecured websites and web applications
Remote browser isolation (RBI) offers comprehensive protection against web-based threats by outsourcing browser activities to an isolated virtual environment in beemNet. This protects client devices, prevents unwanted data loss and allows secure remote access to legacy web applications.
Comprehensive protection (Security Service Edge) for IoT
beem can automatically identify Internet of Things (IoT) devices and create an inventory, which is then continuously updated. Administrators can group the IoT devices and define and assign individual security guidelines covering the full functionality of beem Security Service Edge.
Customised, individual security policies
Administrators can configure customised, company-wide security policies from a central point; for instance for Zero Trust access, data loss prevention (DLP), advanced threat protection (ATP), unified threat management (UTM) or domain name system (DNS).
Zero Trust access minimises susceptibility to attack using granular controls
Finely tuned setting options for protected access, based on place, time, device characteristics, network or data confidentiality, for example. The underlying Zero Trust network access (ZTNA) allows users to access business applications securely from anywhere – therefore making remote access service (RAS) and VPN solutions obsolete.
Zero Trust access for private business applications
Private business applications and company data can be protected by means of a Zero Trust access approach. Business applications can be installed on local servers in the corporate network or in the cloud. The optional beem Application Discovery will assist with the setup of Zero Trust access.
Zero Trust access for Software as a Service (SaaS)
Access to the SaaS applications you have selected can be protected and precisely controlled using Zero Trust access principles. An inline cloud access security broker (CASB) can implement Zero Trust access inside and outside beemNet using a reverse or forward proxy for client devices – as per your choice.
Connect and protect local (web) servers
Anonymous users from the Internet can access local (web) servers at sites with a Swisscom Centro Business router by using fixed IP addresses or dynamic DNS (DynDNS). Security guidelines can be established for each fixed IP address or public domain name (FQDN). This means that a local firewall is no longer necessary.
Passwordless authentication and comprehensive identity management
Company-wide identity and access management and passwordless authentication based on phishing-resistant passkeys. Combined with beem device management to ensure maximum security for passkeys. Single sign-on (SSO) authentication can be enabled as an alternative by means of a federated identity service (e.g. Microsoft Entra ID).
Device management and security requirements for client devices
Comprehensive management functions for client devices running Windows, macOS, iPadOS, iOS and Android. It is possible to block devices remotely or to delete company data stored on them. Choose from predefined device security profiles that are continuously updated by Swisscom security experts (unified endpoint management).
Comprehensive analysis options to enable sound decision-making
beem Analytics provides an insight into comprehensive network and security data. This enables real-time detection of threats, optimisation of network performance, prevention of shadow IT and sound decision-making. AI-based analytics (UEBA) and a connection to Swisscom Threat Detection & Response (TDR) are offered as options.
Company-wide security guidelines and self-service
All company-wide security guidelines can be managed once, centrally, for all of beemNet and all connected devices, users, access rights, networks and sites. In addition, users can be prompted to complete activities (e.g. client device onboarding), which they can subsequently do by themselves.
Always protected in the Swisscom network
Automatic, network-based protection against cyberattacks and increased privacy for all connected devices in the mobile phone network and at company sites with a Swisscom broadband connection.
beem app for protection in third-party networks and advanced security features
The beem app offers users protection in third-party networks and unsecured networks (e.g. public WLANs), as well as encryption of all connections, advanced security features, device-specific push notifications in the event of a cyber incident and a personal Security Dashboard.
Increased privacy thanks to targeted anonymisation
The encryption of data traffic, anonymisation of devices (IP cloaking) and other measures increase the privacy of employees and reduce the risk of social engineering and targeted attacks on devices.
Protection against online cyberattacks
Blocking of malicious online attempts to access connected networks and devices (next-generation firewall, intrusion detection & prevention system, IP cloaking, application obfuscation, zero-day prevention, etc.).
Up-to-date protection against harmful websites and malware
Protection against harmful websites, phishing links, malicious file attachments, viruses and other malware (unified threat management – UTM, secure web gateway – SWG) using deep packet inspection (DPI), even with encrypted connections (e.g. HTTPS). Swisscom security experts make adjustments to the security settings multiple times a day based on the current threat situation.
Push notifications and Security Dashboards create transparency for everyone
Users receive device-specific push notifications as well as a personal Security Dashboard in the beem app informing them of previously blocked content and averted cyber incidents. A Security Dashboard for administrators provides aggregated and anonymised data at company level.
Configure beem now
Comparison of beem Security Editions
Compare the features of the beem Security Editions.
Essential |
Basic |
Plus |
Premium |
|
Secure surfing in beemNet |
||||
Always protected in the Swisscom network |
|
|
|
|
| beem app for protection in third-party networks and advanced security features |
|
|
|
|
| Increased privacy thanks to targeted anonymisation |
|
|
|
|
| Up-to-date protection against harmful websites and malware |
|
|
|
|
| Protection against online cyberattacks |
|
|
|
|
Secure access to business applications and protection of company data |
||||
Zero Trust access minimises susceptibility to attack using granular controls |
|
|
|
|
| Zero Trust access for private business applications |
|
|
|
|
| Zero Trust access for Software as a Service (SaaS) |
|
|
|
|
| Zero Trust access via Internet browser |
|
|
|
|
| More than an SASE solution: Swisscom Enterprise Connect combined with beem |
|
|
|
|
| Information security for confidential and entrusted data |
|
|
|
|
Enable and protect inbound Internet traffic |
||||
Connect and protect local (web) servers |
|
|
|
|
| Connect and protect (web) servers in the corporate network |
|
|
|
|
| Security and optimum latency for inbound and outbound Internet traffic |
|
|
|
|
Client devices and user accounts |
||||
Device management and security requirements for client devices |
|
|
|
|
| Passwordless authentication and comprehensive identity management |
|
|
|
|
Protection against complex attacks |
||||
Secure access to unsecured websites and web applications |
|
|
|
|
| Comprehensive protection (Security Service Edge) for IoT |
|
|
|
|
| AI-based detection of and defence against complex cyberattacks |
|
|
|
|
Security policies and analytics |
||||
Push notifications and Security Dashboards create transparency for everyone |
|
|
|
|
| Comprehensive analysis options to enable sound decision-making |
|
|
|
|
| Company-wide security guidelines and self-service |
|
|
|
|
| Customised, individual security policies |
|
|
|
|
Configure beem now
We will call you. Now or at a time to suit you.
Contact us in writing