Enterprise Mobility + Security (EM+S)

Enterprise Mobility + Security (EM+S)

Nytt og Hot i Enterprise Mobility + Security Jan Vidar Elven Arkitekt MVP Enterprise Mobility

Microsoft Threat Protection Microsoft Ignite, Orlando 2018

Sikkerhet vs. Happy Vibes

Nytt og Hot - Identitet Passordløst Identity Governance Microsoft Secure Score B2B

Alle hater passord

Brukere hater passord Alfanumeriske passord er vanskelige å huske Det er vanskelig å skrive inn passord på mobile enheter Password manager løsninger er kompliserte og er bare mer jobb

IT hater passord Credential reuse across multiple services increases attack surfaces Even the strongest passwords are easily phishable 279% more enterprise security incidents from 2016 to 2017 81% of hackingrelated breaches leveraged either stolen and/or weak passwords OTA Cyber incidents Report 2018 I Verizon Cybercrime Case Studies 2017

Hackere passord Mest frekvent avslåtte passord fra siste uke før Ignite..

Hvordan komme til en verden uten passord Autentisering med høy styrke, høy sikkerhet og tilgjengelige metoder Windows Hello Microsoft Authenticator FIDO2 Security Keys

Identity Governance Identitetsstyring kommer til Azure AD Entitlement management Admins kan lage policier for ressurser som grupper, apper, og siter. Automatisere prosess for gi tilgang til ansatte og partnere. My Access portal Ansatte og partnere kan be om tilgang til disse entitlements, og forretningsledere kan godkjenne forespørsler.

Microsoft Secure Score

B2B Azure AD B2B støtter nå federering med Google Gjelder bare personlige Google kontoer, som @gmail.com Foreløpig ikke GCP

Felles registrering for SSPR og Azure MFA FØR NÅ https://aka.ms/mfasetup https://aka.ms/setupsecurityinfo https://aka.ms/ssprsetup

Modern Management Management og Beskyttelse av Enheter og Applikasjoner - Powered by Cloud

Apps without app protection policies

Data protection with app protection policies

Data protection with app protection policies on devices managed by a MDM solution

Data protection with app protection policies for devices without enrollment

Managed Apps Policy Target Targeted Apps ios Outlook OneDrive OneNote Skype for Business Yammer Word Excel PowerPoint Microsoft Teams Microsoft Planner Microsoft Dynamics CRM on iphone/ipad Microsoft Connections Managed Browser Edge Microsoft PowerBI Microsoft SharePoint Microsoft Visio Viewer Azure Information Protection Adobe Acrobat Reader for Intune Microsoft Invoicing Microsoft Kaizala Microsoft StaffHub Targeted Apps Android Outlook OneDrive OneNote Skype for Business Yammer Word Excel PowerPoint Microsoft Teams Microsoft Planner Dynamics CRM for Phones/Tablets Managed Browser Edge Microsoft Power BI Microsoft SharePoint Azure Information Protection Adobe Acrobat Reader for Intune Microsoft Invoicing Microsoft Kaizala Microsoft StaffHub Microsoft Launcher

Applikasjonsbeskyttelse policier Enrolled Devices (ios, Android) Data Relocation: Prevent itunes & icloud Backup: Yes Allow app to transfer data to other apps: Policy managed apps Allow app to receive data from other apps: All Prevent Save As: Yes (allow OneDrive for Business, SharePoint, Local Storage) Restrict cut, copy, and paste with other apps: Policy managed apps with paste in Restrict web content to display in Managed Browser: No Encrypt app data: Yes Disable contacts sync: No Disable printing: No Access Actions: Require PIN for access: Yes, Numeric, PIN length 4. Allow fingerprint/facial recognition. Without Enrollment (ios, Android) Data Relocation: Prevent itunes & icloud Backup: Yes Allow app to transfer data to other apps: Policy managed apps Allow app to receive data from other apps: Policy managed apps Prevent Save As: Yes (allow OneDrive for Business, SharePoint) Restrict cut, copy, and paste with other apps: Policy managed apps Restrict web content to display in Managed Browser: Yes Encrypt app data: Yes Disable contacts sync: No Disable printing: No Access Actions: Require PIN for access: Yes, Numeric, PIN length 4. Allow fingerprint/facial recognition.

Firmaportal og Managed Apps

Informasjonsbeskyttelse Azure Information Protection Unified Labels Cloud App Security

Unified Labeling Migrering av Azure Information Protection label til Office 365 Security & Compliance (Preview) Unified Labeling Client Preview for Windows Office Insider for Mac

Cloud App Security Azure AD Conditional Access integrasjon for Office 365 SaaS Apps Integrasjon med Windows Defender ATP for Cloud Discovery ( Shadow IT ) Microsoft Classification Service