Presentation is loading. Please wait.

Presentation is loading. Please wait.

Nuts and bolts of Microsoft 365 Business Level 200

Published byJonathan Chase Modified over 4 years ago

Similar presentations

Presentation on theme: "Nuts and bolts of Microsoft 365 Business Level 200"— Presentation transcript:

1 Nuts and bolts of Microsoft 365 Business Level 200
9/20/2019 2:28 PM Nuts and bolts of Microsoft 365 Business Level 200 Ashanka Iddya, Senior Product Manager, Twitter: aiddya Welcome! Goals of this session are to layout the deployment steps involved in enabling M365B with emphasis on hybrid device config and identity. We want this session to layout prescriptive guidance on how to enable various components of M365B We are not going into detail about IT strategies for moving apps, workloads or management into the cloud. There are a number of sessions on that at Inspire in terms of moving to Modern Management that might be very useful. In this Session, for the sake of time, we are narrowly focused on M365B deployment. © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Layered Approach to Security
Microsoft Office 9/20/2019 Layered Approach to Security Security Issues at each layer User Device Application Document 10 Pro Compromised Login Weak Credentials Compromised Device Unmanaged Device – BYOD – has your corp data Weak Pin – anyone can access Users can copy/paste/save corp data to personal apps Using 3rd party apps with weak security Malware vulnerabilities Ransomware threats/Phishing Protecting sensitive data from being shared Important documents need to be protected internally and externally Making sure only the right people have access Making sure departing employees don’t have access Microsoft 365 Business will help you to compete more efficiently, sell more services and retain customers because it brings all of the technology that small business need at a single per-user/per-month price point. Microsoft 365 Business brings together the security and innovation of Windows 10 with the power and familiarity of Office 365 and streamlined management and maintenance capabilities built specifically for small and mid-sized businesses. Microsoft 365 Business is designed to help keep company data secure while ensuring employees are their most productive, in the office or on the go. With productivity apps such as Word and Excel, cloud storage, and calendaring, and an exceptional chat-based workspace to bring teams together, your customers will be able to achieve more as they create and collaborate with people inside and outside their company in ways that they never dreamed possible. Microsoft 365 Business standardizes your customer’s devices on Windows 10, the most secure Windows ever. Building upon this strong foundation, Microsoft 365 Business adds cloud-based management and servicing which helps ensure that customer devices are properly configured to take advantage of the security innovations in Windows 10 and significantly reduces the businesses risk profile. Microsoft 365 Business also includes mobile application data and device management, even on personal devices. With this functionality, when an employee leaves the organization, or loses their device, for example, you are going to be able to protect your customers’ company data, while reassuring the employee that her pictures and text messages remain private on her personal device. Since Microsoft 365 Business is cloud-delivered and enabled, you can count on automatic updates to keep your customers’ apps and devices current with the latest and greatest security protection and features from Microsoft. Your customers will get to host their data on the same cloud that hosts data from over 85% of Fortune 500 companies. This is all made more efficient for you through the Admin Console. The admin console not only simplifies things on your end, but gives you self-service tools that can create lower delivery costs and increased consulting and managed services margins. This frees up time on your end to invest in new capabilities that expand your business into new market areas. © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

3 What is Microsoft 365 Business Microsoft 365 Business User Device
Microsoft Office 9/20/2019 What is Microsoft 365 Business Securing each & every layer of productivity seamlessly Microsoft 365 Business Identity Security Device Security Application Security Security Document Security User Device Application Document 10 Pro Microsoft 365 Business will help you to compete more efficiently, sell more services and retain customers because it brings all of the technology that small business need at a single per-user/per-month price point. Microsoft 365 Business brings together the security and innovation of Windows 10 with the power and familiarity of Office 365 and streamlined management and maintenance capabilities built specifically for small and mid-sized businesses. Microsoft 365 Business is designed to help keep company data secure while ensuring employees are their most productive, in the office or on the go. With productivity apps such as Word and Excel, cloud storage, and calendaring, and an exceptional chat-based workspace to bring teams together, your customers will be able to achieve more as they create and collaborate with people inside and outside their company in ways that they never dreamed possible. Microsoft 365 Business standardizes your customer’s devices on Windows 10, the most secure Windows ever. Building upon this strong foundation, Microsoft 365 Business adds cloud-based management and servicing which helps ensure that customer devices are properly configured to take advantage of the security innovations in Windows 10 and significantly reduces the businesses risk profile. Microsoft 365 Business also includes mobile application data and device management, even on personal devices. With this functionality, when an employee leaves the organization, or loses their device, for example, you are going to be able to protect your customers’ company data, while reassuring the employee that her pictures and text messages remain private on her personal device. Since Microsoft 365 Business is cloud-delivered and enabled, you can count on automatic updates to keep your customers’ apps and devices current with the latest and greatest security protection and features from Microsoft. Your customers will get to host their data on the same cloud that hosts data from over 85% of Fortune 500 companies. This is all made more efficient for you through the Admin Console. The admin console not only simplifies things on your end, but gives you self-service tools that can create lower delivery costs and increased consulting and managed services margins. This frees up time on your end to invest in new capabilities that expand your business into new market areas. AAD Features like MFA Self Service Password Reset Full Centralized Management of Mobile and Laptops with Intune Remote wipe of data of lost & stolen devices BitLocker Encryption Enforce Strong Pin requirements along with WiFi, VPN profiles Restrict copy/paste/save corp data to personal apps Advanced Threat Protection for protection against malware and zero day attacks Data Loss Prevention to monitor sensitive data from being transmitted restrictions like “Do Not Forward” or “Encrypt ” Azure Information Protection protects, classifies Documents for secure sharing Revoke access to Documents Track Sensitive documents © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

4 Azure Information Protection
What is Microsoft 365 Business Device & Application Security Identity Security Azure Active Directory Office 365 Intune Exchange Online: Calendar SharePoint Online: ODFB, Sites Self Service Password Reset New Admin MFA Risky Sign in MFA Coming Soon Teams: Persistent Chat Office Client: Word, Excel PowerPoint External Threat Protection Office 365 Advanced Threat Protection Office 365 Multi-Factor Authentication Controlling Data Access Data Loss Prevention Preservation with Exchange Online archiving Information Rights Management & Encryption 10 Pro Active Directory Mobile Devices Windows 10 Pro device Device Management Centralized Windows Security Enablement E2E MDM for iOS/Android Wifi, VPN, Profile; Certificate Management Security Intune Application Management Restriction on Cut/Copy/Paste on personal apps Document Security Azure Information Protection

5 1. Self Service Password Reset New
Identity Hybrid Configuration AAD Connect enables a single username/password for cloud and on premises apps Self Service Password Reset with writeback Let’s your users change password easily and that’s written back to AD to maintain uniform Password Policies MFA for additional security for: Office 365 Services Admin Accounts When risky sign ins by end users are detected like unusual logins etc (coming soon) Azure Active Directory 1. Self Service Password Reset New 2. Multi Factor Authentication for: O365 Services, Admins, Risky sign ins (coming soon) Active Directory

6 Device & Application Security
Intune MDM + MAM Intune does two things: Device Management For Windows & Mobile Devices Mobile Application Management for iOS & Android 10 Pro Mobile Devices Windows 10 Pro device

7 Device Security Device Management For Windows & Mobile Devices: Intune
Win 10 Auto enrollment benefits: Central Management of windows by enabling defender, Ransomware end point protection and Bitlocker enablement 10 Pro Windows 10 Pro device

8 Device Management Device Management For Windows & Mobile Devices:
Intune Device Management For Windows & Mobile Devices: End to End Device Management for Mobile and Windows Devices: Device Registration Certificate Management Wifi, VPN Profile Device Wipe for Stolen Devices 10 Pro Mobile Devices Windows 10 Pro device Device Registration Certificate Management Wifi, VPN Profile Device Wipe for Stolen Devices

9 Application Security Ring fencing Apps Intune MAM
Intune does two things: 2. Mobile Application Management for iOS & Android Restricting Cut/Copy/Paste/Save on Personal apps Ring fencing Apps Corp @contsoso.com Personal @hotmail.com Attachment Copy Paste Save Can’t Paste to Personal Apps Can’t Save to Personal Storage

10 Security Office 365 1. External Threat Protection Office 365 Advanced Threat Protection Controlling Data Access Data Loss Prevention Preservation with Exchange Online archiving Information Rights Management & Encryption

11 Suspicious attachment
Advanced Security 1. External Threat Protection Office 365 Advanced Threat Protection Safe Multiple filters + three antivirus engines with Exchange Online protection Malicious links Recipient Safe Links rewrite Unsafe Suspicious attachment Detonation chamber (sandbox) Executable? Registry call? Elevation? ……? Sender Protection against unknown malware/Viruses Behavioral analysis with machine learning Admin alerts Time-of-click Protection Real-time protection against malicious URLs Growing URL coverage Rich Reporting and Tracing Built-in URL trace Reports for advanced threats

12 Advanced Security 2. Controlling Data Access: Data Loss Prevention
Offers Policy Tips to prevent users from sharing sensitive content Detects sensitive content based on pattern matching engine for various sensitive data Bank Routing Numbers SSNs PHI Takes Action Blocks Reports to admin

13 Advanced Security 2. Controlling Data Access: Exchange Online Archiving Exchange Online Archiving Unlimited archiving mailbox eDiscovery features to help produce data/content Provides long term retention of content based on compliance requirement Retains even deleted items for long term retention & eDiscovery

14 Advanced Security 2. Controlling Data Access: Encryption & Rights Management Information Rights Management and Encryption Set Permissions like ‘Do Not Forward’ Enable External Encryption – where recipients get fully encrypted s

15 Document Security Classification & Labeling:
Azure Information Protection Azure Information Protection Classification & Labeling: Manually Classify documents based on labels like “Highly Confidential” that is associated with a certain group access Encryption: The encryption follows classification labels Tracking: who/where document is accessed Revoke access previously granted Document User 1 Document User 2 Document Classification & Labeling: “Highly Confidential” Encryption Tracking Revocation

16 Azure Information Protection
What is Microsoft 365 Business Device & Application Security Identity Security Azure Active Directory Office 365 Intune Exchange Online: Calendar SharePoint Online: ODFB, Sites Self Service Password Reset New Admin MFA Risky Sign in MFA Coming Soon Teams: Persistent Chat Office Client: Word, Excel PowerPoint 10 Pro Active Directory External Threat Protection Office 365 Advanced Threat Protection Office 365 Multi-Factor Authentication Controlling Data Access Data Loss Prevention Preservation with Exchange Online archiving Information Rights Management & Encryption Mobile Devices Windows 10 Pro device Device Management Centralized Windows Security Enablement E2E MDM for iOS/Android Wifi, VPN, Profile; Certificate Management Intune Application Management Restriction on Cut/Copy/Paste on personal apps Security Document Security Azure Information Protection

17 What is Microsoft 365 Business Microsoft 365 Business User Device
Microsoft Office 9/20/2019 What is Microsoft 365 Business Securing each & every layer of productivity seamlessly Microsoft 365 Business Identity Security Device Security Application Security Security Document Security User Device Application Document 10 Pro Microsoft 365 Business will help you to compete more efficiently, sell more services and retain customers because it brings all of the technology that small business need at a single per-user/per-month price point. Microsoft 365 Business brings together the security and innovation of Windows 10 with the power and familiarity of Office 365 and streamlined management and maintenance capabilities built specifically for small and mid-sized businesses. Microsoft 365 Business is designed to help keep company data secure while ensuring employees are their most productive, in the office or on the go. With productivity apps such as Word and Excel, cloud storage, and calendaring, and an exceptional chat-based workspace to bring teams together, your customers will be able to achieve more as they create and collaborate with people inside and outside their company in ways that they never dreamed possible. Microsoft 365 Business standardizes your customer’s devices on Windows 10, the most secure Windows ever. Building upon this strong foundation, Microsoft 365 Business adds cloud-based management and servicing which helps ensure that customer devices are properly configured to take advantage of the security innovations in Windows 10 and significantly reduces the businesses risk profile. Microsoft 365 Business also includes mobile application data and device management, even on personal devices. With this functionality, when an employee leaves the organization, or loses their device, for example, you are going to be able to protect your customers’ company data, while reassuring the employee that her pictures and text messages remain private on her personal device. Since Microsoft 365 Business is cloud-delivered and enabled, you can count on automatic updates to keep your customers’ apps and devices current with the latest and greatest security protection and features from Microsoft. Your customers will get to host their data on the same cloud that hosts data from over 85% of Fortune 500 companies. This is all made more efficient for you through the Admin Console. The admin console not only simplifies things on your end, but gives you self-service tools that can create lower delivery costs and increased consulting and managed services margins. This frees up time on your end to invest in new capabilities that expand your business into new market areas. AAD Features like MFA Self Service Password Reset Full Centralized Management of Mobile and Laptops with Intune Remote wipe of data of lost & stolen devices BitLocker Encryption Enforce Strong Pin requirements along with WiFi, VPN profiles Restrict copy/paste/save corp data to personal apps Advanced Threat Protection for protection against malware and zero day attacks Data Loss Prevention to monitor sensitive data from being transmitted restrictions like “Do Not Forward” or “Encrypt ” Azure Information Protection protects, classifies Documents for secure sharing Revoke access to Documents Track Sensitive documents © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

18 Thank You!

Download ppt "Nuts and bolts of Microsoft 365 Business Level 200"

Similar presentations

Exchange 2010 Overview Name Title Group. What You Tell Us Communication overload Globally distributed customers and partners High cost of communications.

Exchange 2010 Overview Name Title Group. What You Tell Us Communication overload Globally distributed customers and partners High cost of communications.
What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.

What’s New in Exchange Online. Disclaimer This presentation contains preliminary information that may be changed substantially prior to final commercial.
Empower Enterprise Mobility Jasbir Gill Azure Mobility.

Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Microsoft Virtual Academy Preparing for the Windows 8.1 MCSA Module 5: Managing Devices & Resource Access.

Microsoft Virtual Academy Preparing for the Windows 8.1 MCSA Module 5: Managing Devices & Resource Access.
Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.

Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.
Office 365 Upsell Paths.

Office 365 Upsell Paths.
ActiveSync & DLP management in Exchange Online

ActiveSync & DLP management in Exchange Online
Secure your complete data lifecycle using Azure Information Protection

Secure your complete data lifecycle using Azure Information Protection
The time to address enterprise mobility is now

The time to address enterprise mobility is now
Deployment Planning Services

Deployment Planning Services
Deployment Planning Services

Deployment Planning Services
A Hitchhiker's Guide to Azure Active Directory

A Hitchhiker's Guide to Azure Active Directory
9/12/2018 6:21 PM BRK2203 Protect and control your sensitive emails with new Office 365 Message Encryption capabilities Praveen Vijayaraghavan Principal.

9/12/2018 6:21 PM BRK2203 Protect and control your sensitive s with new Office 365 Message Encryption capabilities Praveen Vijayaraghavan Principal.
Enterprise Security in Practice

Enterprise Security in Practice
Identity & Access Management for a cloud-first, mobile-first world

Identity & Access Management for a cloud-first, mobile-first world
Deployment Planning Services

Deployment Planning Services
Security as A Service Components

Security as A Service Components
Accelerate GDPR compliance with Microsoft 365

Accelerate GDPR compliance with Microsoft 365
O365 & AZURE ADDS Mladen Baranek, Miadria

O365 & AZURE ADDS Mladen Baranek, Miadria
Azure Information Protection Strategy and Roadmap

Azure Information Protection Strategy and Roadmap

Similar presentations

Ads by Google