Increase productivity and security with enterprise mobility

FND2851

Mobile First | Cloud First

Sixty-one percent of workers mix personal and work tasks on their devices*

>Seventy-five percent of network intrusions exploited weak or stolen credentials ***

>Eighty percent of employees admit to using non-approved software-as-a-service (SaaS) applications in their jobs**

61% >80% >75%

* Forrester Research: “BT Futures Report: Info workers will erase boundary between enterprise & consumer technologies,” Feb. 21, 2013** http://www.computing.co.uk/ctg/news/2321750/more-than-80-per-cent-of-employees-use-non-approved-saas-apps-report*** Verizon 2013 data breach investigation report

The mobile landscape

IT

Employees CustomersBusiness partners

Devices AppsUsers Data

Place Holder – Godiva Video

It’s integrated - identity is the control plane

On premises

Microsoft Azure Active Directory

• One common identity

• Single sign-on

• Self-service capabilities

Azure

SaaS

Office 365

• Manage and secure productivity

• Office mobile apps

• Data-level protection

It protects Office better - mobile productivity

It’s comprehensive – cross-platform

• iOS, Android, Windows

• 1000s of SaaS apps

• LOB apps, RemoteApp

It just works - flexible architecture matters

• Always up-to-date

• Works with what you have

• Simple to set up and connect

Empowering enterprise mobility

Protection against threats

Additional security for today’s security threats

Access to all your apps

SaaS apps, mobile apps, on-premises, and Windows apps

Collaboration on the go

Managed email and productivity

Customer story: Catholic District School Board of Eastern OntarioChallenge• District operates 50 schools attended by

13,000 students in eastern Ontario• Sought to support both student and staff

BYOD• On-premises MDM solution only supported

board-owned devices, and was discontinued

Solution• Acquired 2,500 Microsoft Intune seats and

hired a full-time employee to develop new BYOD policies

• Enrolled 450 board-owned iOS devices in Intune

• Expect to enroll board-owned student devices, then launch and enroll BYOD pilot program

Approach• Simplify maintenance with cloud-based,

multiplatform device management service

Managed email and productivity

Identity

Application

Device

Data

Windows 10 Windows Provable PC

Health (PPCH)

SharePointOnline

ExchangeOnline

User

Conditional access

Policy verification

Microsoft Intune

SharePointOnline

ExchangeOnline

User

Microsoft Intune

Policy compliance verification

Device management

Device compliance

Measured boot integrity status (Windows PPCH)

Advanced device compliance (antivirus, firewall, patch state, etc.)

Mobile application management

Maximize mobile productivity and protect corporate resources with Office mobile apps – including multi-identity support

Extend these capabilities to your existing line-of-business apps using the Intune App Wrapping Tool

Enable secure viewing of content using the Managed Browser, PDF Viewer, AV Player, and Image Viewer apps

Managed apps

Personal appsPersonal apps

Managed apps

ITUser

Corporate data

Personal data

Multi-identity policy

Mobile application management

Personal apps

Managed apps

Copy Paste Save

Maximize productivity while preventing leakage of company data by restricting actions such as copy, cut, paste, and save as between Intune-managed apps and unmanaged apps

Save to personal storage

Paste to personal app

User

Email attachment

Protect ANY file

Share with ANY person

View on ANY device

Track and manage from the cloud

Encrypt files and data

Managed productivityDemo

Customer story: iBreedITChallenge• Cloud-based solution to help plan, manage,

and analyze plant breeding programs • Breeding programs last 7-10 years, span up to

thousands of trials, collect massive amounts of data

Solution• Azure and SQL Databases ensure adherence

to security protocols • App integrates with lab systems to cross-

check data • Azure RemoteApp enables flexibility and

scalability to use services when they need them

Approach• Secure, reliable, scalable data with Azure-

based solution

Single sign-on to SaaS apps Access LoB applications

Microsoft AzureActive Directory

App Proxy

Managing access to applications

Access your Windows apps

Microsoft AzureRemoteApp

Intelligent cloud

Machine learning

Security reports

Privileged identity management

App security

Conditional access

Multi-factor authentication (MFA)

Cloud app discovery

ALERT

1 4 5 6 7 6

Detect threats

User behavioral analysis

Simple attack timeline

Identity-driven security

Security reporting that tracks inconsistent access patterns, analytics, and alerts.

Reporting API

Built-in security features.

Monitor and protect access to enterprise apps

ATA

Devices and

servers

Behavioral Analytics

Forensics for known attacks and issues

Advanced Threat Analytics

Profile normal entity

behavior (normal vs. abnormal)

Search for known

security attacks &

issues

Detect suspicious user

activities, known attacks, and

issues

SIEMActive DirectoryActive Directory

Microsoft Advanced Threat Analytics

Identity-driven securityDemo

Enterprise Mobility Suite

Microsoft Azure Active Directory Premium

Identity and access management

Easily manage identities across on-premises and cloud. Single sign-on and self-service for any application

Microsoft Intune

Mobile device and app management

Manage and protect corporate apps and data on almost any device with MDM and MAM

Microsoft Azure Rights Management Premium

Information protection

Encryption, identity, and authorization to secure corporate files and email across on phones, tablets,

and PCs

Behavior-based threat analytics

Advanced Threat Analytics

Identify suspicious activities and advanced threats in near real time with simple, actionable reporting

Multiple layers of protection

Identify and authorize user

Apply device policies

Apply application policies

Apply content policies

User IT

Active Directory Premium

Rights Management

Enterprise Mobility Suite

Next steps

To explore• Try Enterprise Mobility now• http://www.microsoft.com/ems• TechNet @

http://technet.microsoft.com/• MSDN @ http://www.msdn.com/

To doRate the session

Q&A

© 2015 Microsoft Corporation. All rights reserved.

www.microsoft.com/ems