Microsoft 365 SMB Advanced Security Microsoft 365 Business
Microsoft 365 SMB Advanced Security Microsoft 365 Business Premium: Understanding the Nuts and Bolts
Microsoft 365 for business New name, same great value, same price. Office 365 Business Essentials Microsoft 365 Business Basic Cloud services Office 365 Business Premium Microsoft 365 Business Standard Cloud services and desktop apps Microsoft 365 Business Premium Cloud services, desktop apps, and advanced security Effective on April 21 st, 2020
Microsoft 365 for business New name, same great value, same price. Microsoft 365 Business Basic Cloud services Exchange Teams Share. Point One. Drive Outlook Word Excel Power. Point Publisher Access Microsoft 365 Business Standard Cloud services and desktop apps Microsoft 365 Business Premium Cloud services, desktop apps, and advanced security Intune Note: Not all features/product logos shown. Azure Information Protection Defender Conditional Access Windows Virtual Desktop
Layered approach to security Security Issues at each layer 10 Pro
What is Microsoft 365 Business Premium Securing each & every layer of productivity seamlessly Microsoft 365 Business Premium Identity Security Device Security 10 Pro Application Security Email Security Document Security
What is Microsoft 365 Business Premium Device & Application Security Identity Security Intune Azure AD Self Service Password Reset MFA Conditional Access New 10 Pro Mobile Devices Windows 10 Pro device Active Directory Office 365 Exchange Online: Email Calendar Share. Point Online: ODFB, Sites Teams: Persistent Chat Office Client: Word, Excel Power. Point External Threat Protection Office 365 Advanced Threat Protection Office 365 Multi-Factor Authentication Controlling Data Access Data Loss Prevention Preservation with Exchange Online archiving Information Rights Management & Encryption Device Management Microsoft Defender AV Centralized Windows Security Enablement E 2 E MDM for i. OS/Android Wifi, VPN, Profile; Certificate Management Email Security Intune Application Management Restriction on Cut/Copy/Paste on personal apps Document Security Azure Information Protection
Identity Azure AD Hybrid Configuration AAD Connect enables a single username/password for cloud and on premises apps 1. Self Service Password Reset with writeback 2. Multi Factor Authentication for: • Microsoft Services • 3 rd Party Apps Let’s your users change password easily and that’s written back to AD to maintain uniform Password Policies 3. Conditional Access New • User • Location • Devices • Apps Microsoft Services (incl. Office services) Active Directory MFA for additional security for: 3 rd Party Apps Conditional Access Enforce access controls based on location, user state, device state and apps
Device & Application Security Intune does two things: Intune MDM + MAM 10 Pro Mobile Devices Windows 10 Pro device 1. Device Management For Windows & Mobile Devices 2. Mobile Application Management for i. OS & Android
Device Security Intune does two things: Intune 1. Device Management For Windows & Mobile Devices Win 10 Auto enrollment benefits: Central Management of windows by enabling Microsoft Defender AV, Ransomware end point protection and Bit. Locker enablement 10 Pro Windows 10 Pro device
Device Management Intune does two things: Intune 1. 10 Pro Mobile Devices Windows 10 Pro device Device Management For Windows & Mobile Devices End-to-end • Device registration • Certificate management • Wifi, VPN profile • Device wipe for stolen devices
Application Security Intune does two things: Intune MAM 2. Mobile Application Management for i. OS & Android Restricting Cut/Copy/Paste/Save on Personal apps
Email Security 1. Office 365 Advanced Threat Protection 2. Exchange Online: Email Calendar Share. Point Online: ODFB, Sites Teams: Persistent Chat Office Client: Word, Excel Power. Point External Threat Protection Controlling Data Access Data Loss Prevention Preservation with Exchange Online archiving Information Rights Management & Encryption
Advanced Security 1. External Threat Protection Office 365 Advanced Threat Protection 2. Controlling Data Access Data Loss Prevention Office 365 Preservation with Exchange Online archiving Information Rights Management & Encryption Protection against unknown malware/Viruses • Behavioral analysis with machine learning • Admin alerts Time-of-click Protection • Real-time protection against malicious URLs • Growing URL coverage Rich Reporting and Tracing • Built-in URL trace • Reports for advanced threats
Advanced Security 2. Controlling Data Access Data Loss Prevention • Offers Policy Tips to prevent users from sharing sensitive content • Detects sensitive content based on pattern matching engine for various sensitive data • • Bank Routing Numbers SSNs PHI Takes Action • • Blocks Reports to admin
Advanced Security 2. Controlling Data Access Exchange Online Archiving • • Unlimited archiving mailbox e. Discovery features to help produce data/content Provides long term retention of content based on compliance requirement Retains even deleted items for long term retention & e. Discovery
Advanced Security 2. Controlling Data Access Information Rights Management & Encryption Information Rights Management and Encryption • • Set Permissions like ‘Do Not Forward’ Enable External Encryption – where recipients get fully encrypted emails
Document Security Azure Information Protection • Classification & labeling: • • User 1 User 2 Document Classification & labeling: “Highly Confidential” Encryption Tracking Revocation Manually classify documents based on labels like “Highly Confidential” that is associated with a certain group access Encryption: The encryption follows classification labels Tracking: who/where document is accessed Revoke access previously granted
What is Microsoft 365 Business Premium Securing each & every layer of productivity seamlessly Microsoft 365 Business Premium Identity Security Device Security 10 Pro Application Security Email Security Document Security
What is Microsoft 365 Business Premium Device & Application Security Identity Security Intune Azure AD Self Service Password Reset MFA Conditional Access New 10 Pro Mobile Devices Windows 10 Pro device Active Directory Office 365 Exchange Online: Email Calendar Share. Point Online: ODFB, Sites Teams: Persistent Chat Office Client: Word, Excel Power. Point External Threat Protection Office 365 Advanced Threat Protection Office 365 Multi-Factor Authentication Controlling Data Access Data Loss Prevention Preservation with Exchange Online archiving Information Rights Management & Encryption Device Management Microsoft Defender AV Centralized Windows Security Enablement E 2 E MDM for i. OS/Android Wifi, VPN, Profile; Certificate Management Email Security Intune Application Management Restriction on Cut/Copy/Paste on personal apps Document Security Azure Information Protection
Thank You! SMB Technical Community: aka. ms/smbtc © Copyright Microsoft Corporation. All rights reserved.
- Slides: 20